When we take your business, we take it seriously. Here are the technical details to how we do that.
Your data is available even if you end your subscription. We don’t delete your data, we archive it and you can access it (but not change it) anytime in the future by just logging back into your account.
Strong SSL Encryption
Your connection to cheqbook.com is encrypted with 256-bit encryption using SSL provided by GeoTrust, a leading certificate authority.
By default, only you have access to your data. If you like, you can share your data with your accountant, bookkeeper, or staff. Each person you invite can have a different level of access from full to read only access. In fact, even our staff can’t view your data without being granted access by you first.
Cheqbook requires a strong password. Login attempts are throttled so no one can guess your password. If your leave your computer too long, we automatically log you out.
Availability & Redundancy
You need access to your books 24/7. Our backend makes sure that you get that access. In our cloud infrastructure, all of our services are clustered for performance and reliability. For example, in the event of a hardware failure, your requests get routed around the faulty server.
Your business data is crucial. We protect the time and effort you have put in by backing up your data daily. We also take the precaution of moving that data to an off-site location.
Cheqbook uses high-grade encryption to get your bank feed information from Intuit, our data partner. Your billing information used with your subscription is maintained with Chargify.com. Neither your online bank information or your credit card information is kept on our servers.
Independent Security Audits & Compliance
Cheqbook has passed a third party independent audit by Cigital. We are PCI DSS compliant as well, so your credit card information is not saved on our servers.
Additionally, our infrastructure provider, Amazon Web Services has acquired a wide range of certifications and other third-party attestations by independent auditors including SOC 1/SSAE 16/ISAE 3402, SOC 2, FISMA, DIACAP, FedRAMP, PCI DSS Level 1, ISO 27001, International Traffic In Arms Compliance, and FIPS 140-2.
Cheqbook’s infrastructure is housed in Amazon Web Service (AWS) data centers. AWS has in the past successfully completed multiple SAS70 Type II audits. Only those within Amazon who have a legitimate business need to have such information know the actual location of these data centers, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access.