Cloud Security Principles

User data transiting networks should be adequately protected against tampering and eavesdropping.

NCSC - Data in Transit Protection

We implement the Transport Layer Security protocol (TLS version 1.2) to protect data in transit for all services and service access. We also apply certificate and TLS hardening best practices wherever necessary.

Where HTTPS cannot be used, such as some connections between our service and 3rd party suppliers (or your own systems) we implement IPSec VPN gateways. IPSec VPN gateways are also used for non-http based integrations.