At TestFit, we are committed to ensuring your TestFit experience is secure and reliable. Here are a few ways of how we are doing that.
Data Encryption, Storage, and Privacy
All communications with the TestFit license portal and TestFit’s authentication provider are protected via a secure socket to ensure any data you send is encrypted using SSL/TLS. Amazon hosts TestFit data in Amazon Web Service’s (AWS) data centers, which include state-of-the-art security and redundancy measures including power supplies and backup generators. Details on Amazon Web Services Security measures can be found here.
Authorization
TestFit has partnered with Auth0, an industry leader in authentication for authorization token management and password management. Your TestFit password is never stored on TestFit’s servers and all communication with Auth0 is encrypted using SSL/TLS. TestFit also supports single-sign-on (SSO), which provides customers with flexibility in implementing their own security standards.
Controlled Access and Permissions
Role-based user permissions in the TestFit application include multiple levels of authority from administrators to collaborators to standard users and can be managed by company, group, or business unit, and by individual projects. These access controls govern who has the rights to access and use different information.
Vulnerability Detection
TestFit regularly engages independent third-party security specialists to conduct penetration testing and vulnerability scans. Additionally, several services are used internally to continually monitor system behaviors.
Disaster Recovery
TestFit takes precautions to ensure you are not impacted by unplanned outages. TestFit frequently backs up customer data to mitigate the loss of customer data. In the case of an outage, our team will work to restore full access as soon as possible.
Terms of Service
For more information about the services and technologies TestFit uses, please refer to our Terms of Service.