We strive to ensure our service and software are secure.

Access 

Our production cluster is only accessible to our on-call team and on an as needed basis for debugging. Production data is never replicated to non-production systems.

Configuration 

All configuration, including customer tokens, is transfer via SSH and encrypted at rest. The data is only replicated to deploy requested services and as part of backups. Configuration data may be wiped at any time directly by the customer and requested to be purged from backups.

Payment 

All payment information is entered on Stripe's site directly. Only the transaction amount and reference ID is tracked in our system. See Stripe's policies on security and privacy for more details.

Runner 

Runners are instantiated separately for each customer to ensure a clear division.

The remaining security measures vary between our enhanced and basic runners, but both ensure customer data is kept safe.