.svg){kind=logo}
Couchdrop -
Secure by design
With Couchdrop, we handle all of the infrastructure management and maintenance for you. This includes security management, with several protocols and safeguards in place to ensure your data is always secure.
No infrastructure to manage
As a true SaaS platform, Couchdrop handles all the infrastructure management for you. This means no spinning up virtual machines or software installation. Couchdrop scales automatically to meet your needs.
No data storage
Couchdrop never stores your data and meets HIPAA and SOC 2 standards. Connect your own storage and use Couchdrop for secure automated file transfers in real time between your existing storage platforms.
Automatic updates, patching, vulnerability management
All updates, patching, and vulnerability management are handled by our team. You never have to manually install updates or patches or handle any other aspects of infrastructure security.
How we keep your data safe
Couchdrop takes security seriously to ensure your data stays safe and protected
There are several protocols in place for data security:
Couchdrop is built using modern cloud platforms, containers, virtual machines and microservices
All employees undergo regular training in security best practices
We handle updates and patching and vulnerability management
Stringent and secure development practices are followed
Firewalls, intrusion detection systems, and automatic code and infrastructure scanning tools are used to constantly monitor our internal security practices
Regular penetration testing is performed to ensure systems are secure
How the product keeps your data safe
Couchdrop has been built to provide comprehensive access and security controls out of the box
SSO support for a secure and streamlined sign in experience
MFA/2FA support
Automatic lockout after several failed login attempts
Your data is encrypted at rest
Built in suspicious behavior alerting
Comprehensive audit logging
Granular audit controls
You always have full control of your data
Secure password policies
Ability to choose a specific data region
Security Certifications
Couchdrop meets several security compliance standards so you can be confident that your data will be handled properly.
SOC 2
SOC 2 is a security standard developed by the American Institute of CPAs and covers five trust service principles. These are Privacy, Security, Confidentiality, Processing Integrity, and Availability. Comprehensive requirements must be met in each of these areas for SOC 2 compliance.
Keeping SOC 2 compliance requires regular audits by a licensed third party, and reports are available on request through our Trust Center.
HIPAA
HIPAA refers to the Health Insurance and Accountability Act of 1996 and was designed to ensure that protected health information is properly protected.
Any cloud service provider, including Couchdrop, that works with HIPAA data must meet strict guidelines.
GDPR
GDPR stands for General Data Protection Regulation in the European Union. It is currently the strongest data privacy and security law in the world, with rigorous standards and requirements that must be met to stay compliant.
To stay GDPR compliant, organizations must meet requirements in areas of data security, Lawful Basis and Transparency, Accountability and Governance, and Privacy Rights.
For more information on security including white papers, compliance reports, and monitoring, see our Trust Center.
Visit Trust Center →