IntegrationsPricing

Security

How we keep your data safe and secure

Last updated: January 1, 2025

Our Security Promise

At Maillayer, we take security seriously. We use enterprise-grade infrastructure and follow industry best practices to protect your data, emails, and business information. Your trust is important to us, and we work hard to keep it secure.

Secure Infrastructure

Cloud Hosting

  • DigitalOcean: SOC 2 certified cloud infrastructure with 24/7 monitoring
  • Data Centers: Multiple secure locations with biometric access controls
  • DDoS Protection: Built-in protection against attacks and threats

Email Delivery

  • Amazon SES: Enterprise-grade email service with high deliverability
  • Authentication: DKIM, SPF, and DMARC support for secure email delivery
  • Reputation Management: Automatic bounce and spam protection

User Authentication

  • Firebase Auth: Google's secure authentication system
  • Two-Factor Authentication: Extra security layer available
  • Secure Sessions: Encrypted login tokens with automatic expiration

Data Protection

Encryption

  • Data at Rest: All stored data encrypted with AES-256
  • Data in Transit: TLS encryption for all data transmission
  • Email Content: Your templates and campaigns are fully encrypted

Access Controls

  • Only authorized personnel can access systems
  • Multi-factor authentication required for all staff
  • Regular access reviews and audit logs
  • Principle of least privilege for all access

Backups and Recovery

  • Automated daily backups across multiple regions
  • Encrypted backup storage with point-in-time recovery
  • Regular backup testing and disaster recovery procedures

Monitoring and Response

24/7 Security Monitoring

  • Real-time threat detection and alerting
  • Automated security scanning and vulnerability assessment
  • Continuous monitoring of all systems and networks

Incident Response

  • Dedicated security team available around the clock
  • Clear procedures for handling security incidents
  • Immediate notification if your data is affected
  • Regular security audits and penetration testing

Compliance Standards

Our infrastructure partners maintain the highest security certifications:

  • SOC 2 Type II: Independent security audits (DigitalOcean, Amazon SES)
  • ISO 27001: Information security management standards
  • GDPR Compliant: European data protection compliance
  • PCI DSS: Payment card security standards (via Stripe)

Your Security Responsibilities

Account Security

  • Use a strong, unique password for your account
  • Enable two-factor authentication (2FA)
  • Keep your contact information up to date
  • Log out from shared or public computers

Email Best Practices

  • Only send emails to people who have opted in
  • Keep your contact lists clean and up to date
  • Follow email marketing laws and regulations
  • Report any suspicious activity immediately

Report Security Issues

Found a security vulnerability? We appreciate responsible disclosure:

  • Email us at security@maillayer.com
  • Provide detailed information about the issue
  • Give us reasonable time to investigate and fix
  • We offer recognition and rewards for valid reports

Contact Our Security Team

Questions about these terms? Contact us: hello@maillayer.com