Security

 

At Fresh Projects, we prioritise the security and privacy of our users' data - as we are acutely aware that we have been entrusted with highly sensitive information by our clients. Our commitment to maintaining a secure environment is reflected in the following security measures:

1. Data Security:

  • The database connections operate exclusively on SSL (Secure Sockets Layer) encryption protocol, ensuring secure communication between the database, application server and user clients.
  • Access to all data within our database is controlled through access control permissions at a per-row level.
  • Access to sensitive data is strictly limited to authorised administrator accounts at a per-row level.

2. User Session Management:

  • App user sessions are automatically expired after a set period to prevent the use of old session tokens for unauthorised access.
  • Minimum password lengths are enforces on all user accounts.

3. Infrastructure Security:

  • Our infrastructure, including both the database and application servers, is hosted on Amazon Web Services (AWS), which boasts robust security controls and compliance certifications.
  • AWS ensures physical and environmental security, network and infrastructure protection, and regular security audits.

4. Access Control:

  • Access to databases, servers and services are strictly controlled and limited to authorised administrators.
  • Highly secure passwords, stored in our password management tool, and two-factor authentication are enforced to mitigate unauthorised access to all systems and services.
  • Regular security audits are undertaken on all employees at Fresh Projects, to ensure that systems are up to date, passwords are securely managed, anti-virus and firewall software is up to date and that no sensitive information is saved outside of our secure cloud environment.
  • All devices used by Fresh Projects employees are managed via a secure identity and device management platform that enforces security policies, including disk level encryption and system updates.

5. Data Redundancy and Backup:

  • Daily backups of our data are performed and stored on an offsite server hosted on Google Cloud Platform, enhancing redundancy and ensuring data resilience in case of unforeseen events.

6. Regular Maintenance and Patching:

  • Our servers undergo regular maintenance and patching by a dedicated Backend-as-a-Service provider.
  • Patching ensures that security vulnerabilities are promptly addressed and mitigated to maintain the integrity of our systems.

7. Penetration Testing:

  • Regular penetration testing and security assessments are conducted to proactively identify and address potential vulnerabilities.
  • These assessments help us stay ahead of emerging threats and maintain the highest standards of security.

At Fresh Projects, we are committed to continuously improving our security measures to safeguard the confidentiality, integrity, and availability of our users' data. We understand the importance of trust and strive to uphold the highest standards of security across all aspects of our platform.

Your cart

We value your privacy

We use cookies to customize your browsing experience, serve personalized ads or content, and analyze traffic to our site.