Legal
Effective date: Jan 1, 2025
Security is foundational at Sharp Stack. We design our platform to protect data confidentiality, integrity, and availability.
We use reputable cloud providers with strong physical and environmental controls. Systems are monitored for availability and abnormal activity.
Data is encrypted in transit and, where appropriate, at rest. Access is limited to authorized personnel with a legitimate business need.
We follow least-privilege principles and regularly review access to sensitive systems. Multi-factor authentication is enforced for internal tooling.
We routinely scan for vulnerabilities and remediate issues based on severity. Security updates are prioritized as part of our engineering workflow.
We maintain an incident response process to investigate, contain, and resolve security events. If a customer-impacting event occurs, we will communicate promptly.
Security questions? Email spencer@sharpstack.cloud.