1. What are the security standards in place at Upflowy?
Upflowy adheres to Protective Security Policy Framework (PSPF) which includes requirements for sensitive and classified information Australian Government Information Security Manual (ISM) which is the standard that governs the security of Government ICT systems and includes information on access controls.
We also handle all the requests with end-to-end encryption, from data-in-transit utilising HTTPS to data-at-rest under the 256-bit Advanced Encryption Standard, backups included. The data is decrypted for you only and you have the option for it to skip our servers completely.
2. Where is the data hosted and where is the server based in?
The data is hosted by Google Cloud and the data is saved in US.
3. Are you compliant with HIPAA?
We are GPPR compliant and we're currently working on achieving HIPAA compliance when it comes to Data safety.