Encrypt Customer Data

Owned by Roxy Sanchez
Last updated: Nov 22, 2023 by Mike
1 min read

Does your organisation encrypt customer data on its IT systems?

Yes. The Commonplace platform is hosted in AWS. The database is MongoDB Atlas, also hosted in AWS. In both cases, this is within the AWS London, UK region. AWS facilities comply with ISO 9001, ISO27001, ISO 27017 and ISO 28018 among others.

Within our MongoDB Atlas database, all data is encrypted at rest using MongoDB’s inbuilt services through encrypted storage volumes. The standard used is AES-256.

Within the Commonplace infrastructure, the following measures are in place:
firewalls, private network (VPC), private sub-networks, passwords use key derivation function PBKDF2, all data encrypted in transit and at rest.