Security Is a Top Priority

At Unscribe, safeguarding your data is fundamental to our operations. Our infrastructure, systems, and internal practices are designed to keep your information secure and fully compliant with GDPR regulations.

We value transparency. As an Unscribe customer, you have complete visibility into what data we store, where it’s stored, and how it’s protected.

‍

Platform Security

Encryption
All data is encrypted both in transit and at rest. We use industry-standard AES-256 encryption for all database instances, backups, and read replicas. Data in transit is secured using TLS encryption. Our web application enforces HTTPS-only access, automatically redirecting all HTTP traffic to HTTPS for secure communication.

Our databases are hosted on Amazon Web Services (AWS) using Multi-AZ deployments to ensure high availability and durability.

‍

Application Security

Role-Based Access Control (RBAC)
We implement role-based access control to manage user permissions. Each user is uniquely identified by a session and assigned access based on defined roles. Organization administrators can create and manage roles and have full visibility into user access levels.

User Authentication
Unscribe uses the OpenID protocol for authentication and supports identity providers such as Google and Microsoft. This ensures secure and seamless user login.

‍

Infrastructure Security

Cloud Services
We utilize MongoDB Atlas (on AWS) and DigitalOcean for hosting, storage, and compute power. Both providers adhere to recognized security standards and certifications, including SSAE-16 SOC 2 and ISO 27001. All servers and databases are located in secure data centers within the European Union.

Backups and Disaster Recovery
Our systems are backed up using MongoDB’s managed backup services, allowing secure storage and fast recovery. We conduct regular backup restoration tests to ensure reliability in the event of a disruption.