security

Cloud Security & Data Protection

Privacy and security of our customer data is our first priority at EstateSpace. EstateSpace has earned the trust of customers and professionals. No one but you can view your information on EstateSpace. Everything you enter is encrypted and stored at data centers with high-level security, keeping it all completely private and confidential.

Confidentiality & Privacy

Security processes to make sure that customer data is accessed only by those who have permission.

  • Role-based access controls
  • Restricted access to accounts

Infrastucture Security

Safeguards put in place to prevent direct access to data through AWS.

  • SSAE 16 Type 2-compliant data centers
  • HTTPS connections with AWS
  • Built in firewalls using AWS VPC

Application Security

Features built in to the EstateSpace mobile solution to keep the data it contains secure using Strict Transport Security.

  • HTTPS/TLS 1.2
  • Perfect forward secrecy
  • Mobile app 256 bit key encryption
  • OWASP secure

Data Security

Best practices and services used to prevent loss of data through disaster or hardware failure.

  • Industry leading Amazon Web Services in the Cloud
  • Frequent, automated backups
  • 24/7/365 monitoring and threat response

Cloud Security & Data Protection

These companies have been identified to protect and prevent our applications data from cyber-attacks and other advanced threat vectors. We meet or exceed the most up-to-date standards for security compliance and only work with the best companies in the industry to ensure full data privacy and security.

Amazon Web Services

Cloud Infrastructure

EstateSpace data is stored using Amazon Web Services (AWS) the industry leader in cloud infrastructure security designed to satisfy the requirements of the most security-sensitive customers and securely managed Mongo DB sharded cluster.

Penetration Testing

Penetration Testing

In order to validate our application and infrastructure security and processes are up to date and meet industry standards, EstateSpace security is continually tested and monitored for performance testing to harden our services to ensure proper management of risk and threat limitation.

Cloud Infrastructure Security

Cloud SECURITY MONITORING

EstateSpace’s cloud infrastructure security and monitoring is performed by Mission, a leader in managed cloud services provider and Premier Consulting Partner in the Amazon Web Services (AWS) Partner Network (APN). Mission is Service Organization Control (SOC) 2 Type II certified.

Amazon Web Services

Cloud Infrastructure

EstateSpace data is stored using Amazon Web Services (AWS) the industry leader in cloud infrastructure security designed to satisfy the requirements of the most security-sensitive customers and securely managed Mongo DB sharded cluster.

Penetration Testing

Penetration Testing

In order to validate our application and infrastructure security and processes are up to date and meet industry standards, EstateSpace security is continually tested and monitored for performance testing to harden our services to ensure proper management of risk and threat limitation.

Cloud Infrastructure Security

Cloud SECURITY MONITORING

EstateSpace’s cloud infrastructure security and monitoring is performed by Mission, a leader in managed cloud services provider and Premier Consulting Partner in the Amazon Web Services (AWS) Partner Network (APN). Mission is Service Organization Control (SOC) 2 Type II certified.

ISAE 3402

ISAE 3402

ISAE 3402 engagement is control set of the service organization, or to be more precise the service organizations controls over services, functions performed and applications that are likely to be relevant for the customer and its auditor to evaluate the internal control over financial reporting.

SOC 2 Type I & II

SOC 2 Type I & II

To offer the highest level of protection and provide verifiable assurances to our clients starting on day one, EstateSpace is SOC 2 Type I & II Certified and contracted only with SOC2 or SOC 3 Certified subservice organization(s) to provide data security controls and processes in entirety for the EstateSpace SaaS application(s) and dependencies inclusive of all client data, which never leaves the certified boundary.

HIPAA - Health Insurance Portability and Accountability Act

HIPAA

EstateSpace meets the requirements of HIPAA (the Health Insurance Portability and Accountability Act) compliance is adherence to the physical, administrative, and technical safeguards outlined, which covered entities and business associates must uphold to protect the integrity of electronic Protected Health Information (ePHI).

ISAE 3402

ISAE 3402

ISAE 3402 engagement is control set of the service organization, or to be more precise the service organizations controls over services, functions performed and applications that are likely to be relevant for the customer and its auditor to evaluate the internal control over financial reporting.

SOC 2 Type I & II

SOC 2 Type I & II

To offer the highest level of protection and provide verifiable assurances to our clients starting on day one, EstateSpace is SOC 2 Type I & II Certified and contracted only with SOC2 or SOC 3 Certified subservice organization(s) to provide data security controls and processes in entirety for the EstateSpace SaaS application(s) and dependencies inclusive of all client data, which never leaves the certified boundary.

HIPAA - Health Insurance Portability and Accountability Act

HIPAA

EstateSpace meets the requirements of HIPAA (the Health Insurance Portability and Accountability Act) compliance is adherence to the physical, administrative, and technical safeguards outlined, which covered entities and business associates must uphold to protect the integrity of electronic Protected Health Information (ePHI).

Request our Security Brief or
talk to our security team

Our security team can provide more information or meet with you. Contact us to set up a time today.