KeyPay Ltd is ISO/IEC 27001:2013 certified.
ISO/IEC 27001 is a security standard that outlines and provides the requirements for an information security management system (ISMS). It specifies a set of best practices and details a list of security controls concerning the management of information risks.
KeyPay maintains certification through extensive audits of its controls to ensure that information security risks that affect the confidentiality, integrity, and availability of company and customer information are appropriately managed.
Here is a copy of our ISO 27001 certificate
Who is your data hosted with?
All data is hosted on Amazon Web Services (AWS) EC2 virtual servers.
Where is your data hosted?
All data is hosted in the AWS eu-west-1 (Ireland) region.
Is AWS PCI compliant?
Yes. You can find out more here https://aws.amazon.com/compliance/pci-dss-level-1-faqs/
Is the data encrypted?
Data is transferred using 256bit SSL encryption and all sensitive data is encrypted on disk
Do you support HTTPS?
All data transferred via KeyPay is done so via HTTPS. No data is transferred via HTTP.
How often is your data backed up?
Full backups are carried out daily and transaction logs every 15 minutes for the databases to multiple locations.
Are backups recovered and verified and if so, how often?
Our backups are verified and recovered at least monthly into our staging environment which is used to test the backups are correct. The staging environment is an exact replica of our production environment.
What personal information do you store and how is it used?
If you have any questions or feedback please let us know via firstname.lastname@example.org