Security & Compliance
Enterprise‑grade protection by design - from identity to infrastructure.
Data Security
- TLS 1.2+ encryption for all data in transit
- AES‑256 encryption at rest (via Heroku Postgres/JawsDB/AWS S3)
- Segregated application and database environments
- Server‑side access controls using Wappler Security Provider & Security Restrict
- Continuous platform‑level monitoring from Heroku and AWS
Secure by default. Private by design.
Platform Security
- Hosted on Heroku’s isolated dyno architecture
- Professional dynos for enhanced performance and stability
- Role‑based access controls within the application
- MFA and SSO (SAML/OIDC) available through identity providers
- Audit logs and activity trails supported at the platform and app level
Security that scales with your organisation.
Compliance & Standards
- Built on infrastructure that supports GDPR and UK Data Protection Act compliance
- Hosted on platforms with ISO 27001, SOC 1, SOC 2, and SOC 3 certifications (Heroku/AWS)
- AWS S3 and JawsDB MySQL inherit AWS’s compliance posture
- Application controls aligned with industry best practices
Documentation available for audits &: vendor reviews.
Reliability & Privacy
- High‑availability hosting on Heroku’s resilient routing layer
- Professional dynos for consistent uptime
- Automated backups via JawsDB and AWS S3
- Disaster‑recovery capabilities supported by underlying cloud providers
Your data, your control - always.