Back to policies

Security Overview

Last updated: March 10, 2022

We protect your data.

All data is written to multiple disks instantly, backed up continuously, and stored (encrypted) in multiple physical locations.

Your data is sent using HTTPS.

Whenever your data is in transit between you and us, everything is encrypted, and sent using HTTPS (with TLS v1.2+).

Any data or files that you upload to us are stored encrypted at rest.

Full redundancy for all major systems.

All AWS services used to operate Ready Five actively run in multiple availability zones (multiple physical locations) within an AWS regional network. Failure at a single location allows continued, uninterrupted usage of the Service.

Sophisticated physical security.

All of your data is stored in AWS data centers, which use industry leading practices in physical security, redundancy, and availability. You can learn more about Amazon's data centers here.

Regularly-updated infrastructure.

Our software infrastructure is updated regularly with the latest security patches. While perfect security is a moving target, we actively work to keep up with the state-of-the-art in web security.

We protect your billing information.

All credit card transactions are processed using secure encryption—the same level of encryption used by leading banks. Card information is transmitted, stored, and processed securely with our payment processor, Stripe, which is one of the largest, most advanced payment processors in the world.

Constant monitoring

We have a team dedicated to maintaining your account’s security on our systems and monitoring tools we’ve set up to alert us to any nefarious activity against our domains. To date, we’ve never had a data breach.

We also log and audit all internal data access. If a Ready Five employee wrongly accesses customer data, they will face penalties ranging from termination to prosecution. Again, to our knowledge, this hasn’t happened.

We have processes and defenses in place to keep our streak of 0 data breaches going. But in the unfortunate circumstances someone malicious does successfully mount an attack, we will immediately notify all affected customers.

Have a concern? Need to report an incident?

Have you noticed abuse, misuse, an exploit, or experienced an incident with your account? Please email our support team.

Adapted from the Basecamp open-source policies / CC BY 4.0