Security at EliseAI
EliseAI is committed to maintaining robust security across its platform and products for all users. To this end, we utilize best-in-class technology service providers including Amazon Web Services, LastPass, Datadog, Google Workspace, and more.
All data at rest resides on Amazon RDS encrypted database instances and encrypted backups, using the industry standard AES-256 encryption algorithm. In transit, EliseAI services are encrypted using TLS. We do twice daily backups of our database, codebase, and AWS configuration to ensure the integrity of our data.
We leverage GitHub’s security scanning to make sure that all software we deploy is free of security issues. If a problem arises, we work to patch it immediately.
We follow AWS best practices in setting up a Virtual Private Cloud (VPC) with public and private subnets spread across multiple availability zones in one cloud region. Outside of AWS, we use CipherCloud for additional security measures.
Access to our networks is controlled and monitored through several different measures including OAuth, VPNs, and the principle of least privilege.