Have questions about our security measures at Map Mavin? Please review the following overview of our current procedures and structure as detailed by our development team (also attached as a downloadable .docx file) :
Your Security Matters!
The security of your GIS data and personal information is a top-priority for the Map Mavin team. Please take a few moments to review our security protocols below.
We use only HTTPS for all Map Mavin related websites and APIs. All passwords are one-way encrypted using bcrypt and are filtered from the logs. All web app servers and databases are not directly accessible from the outside. No Map Mavin employee ever accesses your private geospatial data unless required to for support reasons and you give your consent to do so. Upon consent, our support staff may sign into your account to access settings related to your technical issue(s) - you are able to block their access to your account.
Credit Card Safety
We use Stripe for all payment processing. Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. We never store your payment information on our own servers.
We use Amazon Web Services (AWS) for all of our infrastructure and servers. AWS’s data centers are state of the art, utilizing innovative architectural and engineering approaches. Amazon has many years of experience in designing, constructing and operating large-scale data centers. This experience has been applied to the AWS platform and infrastructure. AWS data centers are housed in non-descript facilities. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff utilizing video surveillance, intrusion detection systems and other electronic means. Authorized staff must pass two-factor authentication a minimum of two times to access data center floors. All visitors and contractors are required to present identification and are signed in; they are then continually escorted by authorized staff.
All data is stored on Amazon Web Service's EFS or RDS, both of which are redundantly spread across multiple availability zones. We also regularly take backups of both and store them for up to a month.