Submit a request: Click here for IBM Request FormClick here for AWS Request Form

Security and privacy at Wanclouds Inc

Security and privacy are of utmost importance at Wanclouds Inc. We prioritize helping our customers enhance their security and compliance measures, which starts with ensuring our own organizational security practices.


Governance

Wanclouds Inc. has a dedicated Security and Privacy team that establishes policies and controls, continuously monitors compliance, and undergoes third-party audits to demonstrate our commitment to security and compliance.
Our policies are built on the following core principles:

1: Access is granted only to authorized individuals with a genuine business requirement.

2: Layer security controls for comprehensive protection (defense-in-depth).

3: We maintain consistent application of security controls throughout all aspects of our organization.

4: Iterative control implementation: enhancing effectiveness and auditability, minimizing obstacles.

Product security

Penetration testing

Wanclouds Inc. engages with external penetration testing consulting firms regularly. These assessments cover all aspects of our product and cloud infrastructure, with testers given access to the source code to ensure thorough coverage and effectiveness.

Vulnerability scanning

1: Dynamic analysis (DAST) of running applications.

2: External attack surface management (EASM) continuously running to discover new external-facing assets.

Endpoint protection

All corporate devices used at Wanclouds Inc. are centrally managed and equipped with device management software and anti-malware protection. Furthermore, we enforce secure configurations such as disk encryption, screen lock configuration, and software updates.

Security education

Wanclouds Inc. provides comprehensive security training to all employees during onboarding and annually through educational modules within our own platform. Mandatory live onboarding sessions are conducted for new employees, focusing on key security principles.

Identity and access management

Wanclouds Inc. prioritizes the use of Two-Factors authentication internally whenever feasible. Access to applications within Wanclouds Inc. is granted to employees based on their assigned roles, ensuring appropriate privileges. When an employee's employment is terminated, their access is automatically revoked. Any additional access requests must adhere to the specific policies defined for each application.

Data protection

Data at rest

At Wanclouds Inc., we encrypt all customer data at rest. Additionally, sensitive collections and tables utilize row-level encryption. This means that even if physical or logical access to the database is obtained, the most sensitive information remains unreadable without the decryption keys.

Data in transit

To maximize data security during transmission over potentially insecure networks, we employ TLS 1.2 or higher across all data transfers. We also utilize features like HSTS (HTTP Strict Transport Security) to further enhance the security of data in transit.

Secret management

Encryption keys are securely managed, preventing direct access by any individuals, in Wanclouds Inc.

To read about our Bug Bounty Program, please refer to the https://www.wanclouds.net/security/bug-bounty.