Security & Reliability
Paperwork is committed to upholding the highest standards of application reliability and data security.
Application Reliability
Multi-Cloud Redundancy
Paperwork is hosted across multiple cloud hosting providers to ensure reliable application uptime and stability.
By distributing risk across multiple cloud hosting providers, we can minimize the possibility of downtime in our systems.
Automated Failover
Our systems are designed to be resilient against failures of one or more of our sub-systems. Our web servers and database servers are configured in redundant groups, allowing for continued service in the event of a failure.
Our systems are monitored at all times, and automatic scripts are able to perform immediate switchovers to redundant systems in the event of an issue.
Daily Back Ups
Back-ups of all databases are completed nightly, both locally to the datacenter where the database is located and to a redundant datacenter in a different geography in the same Data Residency Zone.
All objects stored by Paperwork are placed in immutable storage to prevent data loss, and are also backed up nightly to a different geography in the same Data Residency Zone.
Data Security
In-Transit Encryption
Paperwork serves all content through Transport Layer Security (TLS), the next-generation encryption and authentication protocol, to deliver a secure web experience.
Connections between Paperwork and end-users are always encrypted while in transit using TLS version 1.2 or higher.
At-Rest Encryption
Paperwork’s server-side encryption uses one of the strongest block ciphers available to encrypt our data, 256-bit Advanced Encryption Standard (AES-256).
Paperwork encrypts each stored object with a unique key. As an additional safeguard, the key itself is encrypted with a master key that is rotated regularly.
Compliance Certifications for
Sub-Processors
Paperwork ensures all of our hosting providers and sub-processors meet strict compliance standards, depending on their role.
Where appropriate, these standards include PCI DSS Level 1, SOC 1 Type II, SOC 2 Type II, and ISO/IEC 27001:2013.
Data Residency
Every Paperwork customer is able to choose from one of our four Data Residency Zones, which determine where your Paperwork data is stored. Data Residency Zones allow you to remain in compliance with data sovereignty laws and regulations in your country.
Learn more about Data Residency >Platform Security
Web Application Firewall
Paperwork utilizes a web application firewall (WAF) to protect against malicious attacks designed to compromise our web servers. Built on an edge cloud platform, the WAF protects against injection attacks, cross site scripting, HTTP protocol violations, and more. The WAF is continuously updated to address ongoing threats using multiple rulesets.
Inconsistent Activity Detection
Our web platform and APIs are protected by tools that provide predictive, behaviour-based bot detection and mitigation at our network edge.
These tools are designed to prevent irregular activity associated with account takeovers, scraping, and complex application-layer attacks.
DDoS Mitigation
Paperwork is served through a high-bandwidth, globally distributed network that is built to absorb DDoS attacks. This network provides protection against disruptive attacks that may target our infrastructure.
Take the next step
Talk to a member of our sales team today. Experience Paperwork firsthand.