Security

We know your security is extremely important to you and your business, and we’re very protective of it.

Overview

Climaly is a tool for monitoring and analysing performance of investment porfolios. We do our best to provide a high level of security in every piece of work and service we do. Should you have any questions, want to report a vulnerability or encounter an issue, please email us on support@climaly.com.

Infrastructure

All of our services run in the cloud. climaly does not run its own routers, load balancers, DNS servers, or physical servers.

Software Security

We employ a team of excellent engineers at climaly to keep our software and its dependencies up to date eliminating potential security vulnerabilities. We employ a wide range of monitoring solutions for preventing and eliminating attacks to the site.

Backups and Data Storage

Every piece of information we use has an identical copy ready and waiting for an immediate hot-swap in case of hardware or software failure. Every bit of information is saved in at least of three different locations. We do not immediately remove user data from backups when deleted by the user, as we may need to restore it for the user if it was removed unintentionally.

Development and QA environments are physically separated from climaly’s production environment. No customer data is ever used in development or QA environments.

Data in Transit, Communications

All sensitive data (including logins) exchanged with climaly is always transmitted over SSL. Where possible, internal resources communicate with each other over SSL too.

Maintaining security

We protect authentication mechanisms from brute force attacks with rate limiting. All sensitive information including passwords are obfuscated from all our logs and are one-way hashed in the storage using bcrypt. climaly performs regular penetration test audits with a contracted third party.

Credit card safety

When you sign up for an account on climaly, we do not store any of your credit card information on our servers. It’s handed off to Braintree Payment Solutions or Stripe, both companies are dedicated to storing your sensitive data on PCI-Compliant servers.

Contact Us

Have a question, concern, or comment about climaly security? Please contact support@climaly.com.

Terms
Privacy
Security
Contacts
Calculators
Learn

© climaly. All rights reserved