Cobrowse.io employs a security by design approach to ensure that our client's data, our code, and our infrastructure derive their security from first principles and as a top priority. This includes:
- A formal Information Security Management System in accordance with industry standards (ISO 27001; SOC 2)
- Continuous monitoring of production systems and vulnerability scanning
- Our vulnerability management process which proactively identifies and mitigates risks, ensuring robust cybersecurity
- Penetration testing by a third party provider
- Strong encryption by default (at rest and in transit)
- Secure and authenticated connections only
- Strict access control with least privileges granted
- Reviewing and managing our sub-processors
- Regularly reviewing our practices
See the summary on our website for more information. If you would like more information about our security practices then please email security@cobrowse.io.
Data redaction
If you use our redaction feature to redact certain data or views from your website or app, then this data never leaves the end user's device and so it is never processed by us (or by you, if you self host).