Security at Tekmetric

Tekmetric is proud to hold SOC 2 Type II certification, which means the design and operating effectiveness of our security controls are continuously audited. This continuous verification underscores our dedication to secure data management and our commitment to protecting your organization’s data and meeting its comprehensive compliance needs. Learn more about how Tekmetric is dedicated to keeping our customer data safe.

learn more

Tekmetric retains only the data necessary to provide you and your customers with an exceptional experience. Access is limited to only those with a legitimate business need and granted based on the principle of least privilege.

All customer data, in addition to S3 buckets, in encrypted at rest. Sensitive collections and tables also use row-level encryption. This means the data is encrypted even before it hits the database so that neither physical access, nor logical access to the database, is enough to read the most sensitive information.

Tekmetric uses TLS 1.2 or higher everywhere data is transmitted over potentially insecure networks. We also use features such as HSTS (HTTP Strict Transport Security) to maximize the security of our data in transit. Server TLS keys and certificates are managed by AWS and deployed via Application Load Balancers.

Tekmetric partners with Stripe to provide a hosted payment field for handling all payment card data. The cardholder enters all sensitive payment information in a payment field that originates directly from Stripe’s PCI DSS–validated servers.

All customer data, in addition to S3 buckets, are encrypted at rest. Sensitive collections and tables also use row-level encryption. This means the data is encrypted even before it hits the database so that neither physical access, nor logical access to the database, is enough to read the most sensitive information.

Tekmetric uses TLS 1.2 or higher everywhere data is transmitted over potentially insecure networks. We also use features such as HSTS (HTTP Strict Transport Security) to maximize the security of our data in transit. Server TLS keys and certificates are managed by AWS and deployed via Application Load Balancers.