indobase helps you build secure apps by applying various security and compliance measures. indobase is compliant with GDPR, CCPA, HIPAA, and SOC 2.
indobase also employs enhanced password protection and encryption, rate limits, robust permission systems, and HTTPS/TLS to protect you and your users' data.
Compliance
The safeguarding of your and your users' data is taken seriously at indobase. indobase works to achieve compliance with a variety of standards to protect sensitive data, as well as maintain trust and credibility.
GDPR
indobase is GDPR compliant. Learn about our measures, privacy policy, and find our data processing agreement.
PCI
indobase uses Stripe to handle payment and payment information securely. Learn about indobase's PCI compliance.
SOC 2
indobase is SOC2 Type I compliant. Learn about indobase's measures to meet SOC 2 standards.
HIPAA
indobase is HIPAA compliant. Learn about indobase's measures to protect personal health information.
CCPA
indobase is CCPA compliant. Learn about our measures to protect consumer privacy under the California Consumer Privacy Act.
Measures
indobase employs a variety of measures to help you build secure applications, faster. Learn about the different ways indobase protects you and your users' data and privacy.
Authentication
Secure authentication methods to protect your users and promote better passwords.
Encryption
indobase encrypts sensitive data and files in indobase Databases and Storage.
HTTPS
indobase Cloud enforces HTTPS on all endpoints to prevent on-path attacks like packet sniffing.
TLS
indobase assigns TLS certificates on all indobase and user provided domains connected to indobase.
Backups
indobase Cloud uses regular backups to prevent data loss and improve resiliency.
Penetration tests
indobase employs regular third-party penetration tests to find vulnerabilities.
Audit logs
indobase provides detailed audit logs for each product to track and discover suspicious activity.
Abuse protection
indobase protects against common abuse methods like DoS and brute-force attacks.
Reporting vulnerabilities
If you discover security vulnerabilities, please contact us at security@appwrite.io. Please avoid posting a public issue on GitHub or elsewhere online to prevent malicious actors from abusing the vulnerabilities before the indobase team has chance to patch the issue.