Enterprise security that meets the needs of the world’s largest companies
We take security seriously and do everything we can to ensure our customers’ data is safe and sound.
Trusted by 600+ enterprise customers
“Our product has been built with a commitment to security and with consideration for the needs of the largest enterprises in the world.”
How we protect your data
State of the art security
We’ve chosen AWS to handle our customers data based on our years of experience working with enterprise security requirements. AWS utilizes Amazon’s expertise designing and operating enterprise data centers and maintains strong safeguards to protect your privacy.
In addition to our own compliance with GDPR principles, we are committed to helping our customers with their own GDPR compliance in connection with their use of Bananatag. Our Data Processing Agreement is available for all customers here.
SOC 2 Type 1
Bananatag has been independently audited for SOC 2 compliance and has received a SOC 2 Type 1 report that underscores our commitments to security, availability, processing integrity, confidentiality, and privacy.
Authentication made easy
Bananatag supports Single Sign-On (available on our Enterprise plan) using SAML and authorization via Oauth for Google Apps and Microsoft 365. This allows you to securely login using your company’s user directory.
Committed to employee privacy and trusted by the most demanding industries
Governments, financial institutions and healthcare systems all love Bananatag because we prioritize data security.
Highly secure infrastructure
All of Bananatag’s services are hosted in within an AWS Virtual Private Cloud (VPC) and are protected with a complementary set of technologies including AWS Web Application Firewall, AWS Intelligent Threat Detection, DDos Attack Prevention, Network Access Control Firewall, and AWS Guard Duty. Application code is containerized, scanned, built on a 3rd-party scanned and approved up-to-date environment, and deployed to serverless compute infrastructure.
Leading coding and testing practices
Bananatag follows industry standard development and quality assurance processes. Extensive testing, infrastructure and application inclusive, is completed for all applications and services. This includes coding reviews, manual and automated tests, and automated static code scanning before production deployments. Software developers are trained on and implement the latest security best practices, including the OWASP Top 10.
Highly secure data storage
All Bananatag data is stored on highly scalable and secure AWS Aurora databases and DynamoDB, which is encrypted with AES-256 at rest and during transfer. ALL network connections in and out of Bananatag are securely encrypted with SSL.
Primary data storages are backed up at a high frequency that allows for restoration of data in near real-time. Pseudo-anonymous network logs are retained for security auditing, system diagnostics and issue troubleshooting.
Environment access control
A principle of least privilege is employed to all staff and users. All engineers are required to use multi-factor authentication (MFA) or Single Sign-On for development. System configuration is only performed by AWS Certified Sysop Engineers. Production environments and data are segregated from those of development.
Multi-region data storage support
Data can be kept in a specific region on request in order to comply with various privacy legislation or internal legal requirements.
Extensive vulnerability testing
Web applications undergo (and have previously withstood) extensive manual penetration tests by third party vendors. Automated vulnerability scanning is performed for core services and web applications.
AWS CloudTrail & AWS Macie enable governance, compliance, operational auditing, and risk auditing of Bananatag’s AWS account. CloudTrail provides event history the Bananatag AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.
Minimal IT work required
Bananatag is designed and optimized to require minimal setup and maintenance from IT teams.
“We use Bananatag to make data-driven communication decisions as well as ensure our global audience receives emails that look consistent.”
Internal Communication Executive, Travel Counsellors
Whether you have questions about our security infrastructure or the technical aspects of our platform, we’re here to help.