Home ci 17. security: security

17. security: security

Last updated on Aug 05, 2025

Compliance

Epycbyte is committed to ensuring the security and integrity of customer data. We have implemented various measures to ensure compliance with relevant regulations.

  • SOC 2 Type 2: Epycbyte has undergone a SOC 2 Type 2 audit, which provides assurance that our internal controls are operating effectively.
  • ISO 27001:2013: We have implemented an Information Security Management System (ISMS) based on the ISO 27001:2013 standard, ensuring a robust and comprehensive approach to information security.
  • GDPR: Epycbyte is committed to complying with the General Data Protection Regulation (GDPR), ensuring that customer data is processed in accordance with EU regulations.
  • PCI DSS: We have implemented measures to ensure compliance with the Payment Card Industry Data Security Standard (PCI DSS), protecting sensitive payment information.
  • HIPAA: Epycbyte has implemented measures to ensure compliance with the Health Insurance Portability and Accountability Act (HIPAA), protecting sensitive health information.

Infrastructure

Epycbyte's infrastructure is designed to provide a secure and reliable environment for customer data.

  • Cloud Provider: We use Amazon Web Services (AWS) as our cloud provider, which provides a highly secure and scalable infrastructure.
  • Data Centers: Epycbyte has multiple data centers located in different regions, ensuring that customer data is replicated and available in case of regional failures.
  • Network Security: Our network security measures include firewalls, intrusion detection systems, and encryption to protect against unauthorized access.

Security Measures

Epycbyte has implemented various security measures to ensure the confidentiality, integrity, and availability of customer data.

  • Encryption: We use 256-bit Advanced Encryption Standard (AES-256) to encrypt data at rest and HTTPS/TLS 1.3 for data in transit.
  • Access Control: Epycbyte implements role-based access control, ensuring that only authorized personnel have access to sensitive data.
  • Backup and Recovery: We perform regular backups of customer data, which are stored separately in a storage service.

Compliance with EU-U.S Data Privacy Framework

Epycbyte is certified under the EU-U.S. Data Privacy Framework, ensuring that we meet the necessary standards for transferring personal data from the European Union (EU), United Kingdom (UK), and Switzerland to the United States (U.S.).

Enterprise Accounts

Enterprise Teams on Epycbyte have their own build infrastructure, ensuring isolation from Hobby/Pro accounts.

Penetration Testing and Audit Scans

Epycbyte conducts regular penetration testing through third-party penetration testers and has daily code reviews and static analysis checks.

Epycbyte manages your data with a focus on security and availability. Here's an organized summary of where your data resides and how it's protected:

  1. Infrastructure and Regions:

    • Epycbyte uses AWS across 18 regions, along with an Anycast network for global traffic distribution.
    • The default location for serverless functions is the U.S., but you can choose other regions to optimize performance.

  2. Data Storage and Transfer:

    • Data is stored in various locations where Epycbyte or its service providers operate, including the U.S. and globally replicated regions.
    • They use a shared responsibility model, meaning they handle infrastructure while you manage data configuration and storage.

  3. Encryption:

    • Data at rest is encrypted with AES-256.
    • Data in transit uses HTTPS/TLS 1.3 for secure communication.

  4. Backups:

    • Epycbyte performs hourly backups stored for 30 days, globally replicated for disaster resilience.
    • Backups are not accessible to customers and are used only by Epycbyte for recovery purposes.

  5. Security Practices:

    • Regular penetration testing and audits are conducted to ensure security standards.
    • Enterprise accounts have isolated infrastructure from Hobby/Pro accounts.

  6. Uptime and Resiliency:

    • Failover strategies, including AWS Global Accelerator and Anycast, reroute traffic during regional outages.
    • Multi-region redundancy and resiliency testing ensure minimal disruption to services.

  7. Customer Responsibilities:

    • Customers are responsible for data configuration and backups, as Epycbyte's backups are internal for recovery use only.