Security at Zubmit

We take the security of your data incredibly seriously. Here is an overview of the practices and infrastructure we use to keep your information safe.

1. Infrastructure & Hosting

Our services are hosted on secure cloud infrastructure providers (such as AWS/DigitalOcean). We use isolated virtual private clouds (VPCs), strict firewall rules, and regular infrastructure patching to prevent unauthorized access.

2. Encryption

• In Transit: All data sent to or from Zubmit is encrypted using TLS 1.2 or higher (HTTPS).
• At Rest: Databases and file storage are encrypted at rest using industry-standard AES-256 encryption.

3. Data Backups

We perform daily automated backups of all critical databases. Backups are encrypted, stored in geographically separate regions for disaster recovery, and retained for 30 days.

4. Access Control

Access to production systems is strictly limited to authorized engineering personnel based on the principle of least privilege. We use multi-factor authentication (MFA) and audit logs for all administrative access.

5. Vulnerability Management

We continuously monitor our dependencies for known vulnerabilities and apply patches promptly. We also perform regular internal security reviews of our codebase.