Security of your Data
In addition to our commitment to your privacy, the GDPR and data accessibility controls in the Teeming app, we have invested heavily in the security of your data. Some measures are outlined here:
SSO and Multi-Factor Authentication
Teeming's Google Single Sign-on (SSO) allows you to authenticate users in your own systems without requiring them to enter additional login credentials, it also reduces the risk associated with additional passwords to access Teeming.
We recommend that you enforce Multi-Factor Authentication through Google Suite to increase the security of your Google credentials, and in turn the security of the data you store in Teeming.
We enable team member and admin permission levels within the app to be set for your teammates. Admin permissions ensure only authorized users can remove team members, change billing settings or change other teammates' permission levels.
Network and application security
Data Hosting and Storage
All Teeming services and data are hosted with Amazon Web Services (AWS) in the United States in the US West region. Amazon employs a robust physical security program with multiple certifications, including an SSAE 16 certification. For more information on Amazon’s physical security processes, please visit aws.amazon.com/security.
Failover and Disaster Recovery
We have the ability to leverage multiple AWS availability zones and we will be able to quickly restore availability should any data center fail.
Virtual Private Network
All of our servers are located within an isolated Virtual Network separated from other internal & external networks that prevent unauthorized access.
Backups and Monitoring
We use AWS backup services to reduce any risk of data loss in the event of a hardware failure, backup to multiple data centers and utilize a number of monitoring services to alert the team in the event of any failures affecting users.
Permissions and Authentication
Access to Teeming infrastructure is limited to authorized employees who require it for their role. Changes are automated using access roles with the least required permissions.
Every Teeming page and service is served over https. We have Single Sign-on (SSO), 2-factor authentication (2FA) and strong password policies on GitHub, Google, AWS and other critical tools and services to ensure access to cloud services are protected.
All data sent to or from Teeming is encrypted in transit using 256 bit encryption. Our API and application endpoints are TLS/SSL only.
Teeming has a process for handling security events which includes escalation procedures, rapid mitigation and post mortem. All employees are informed of our policies.
All payments made to Teeming go through our partner, Stripe. Details about their security setup and PCI compliance can be found here.
More questions? Contact us at firstname.lastname@example.org