Articles on: General

Security surveys / Supplier forms / IT questionnaires

We understand that some companies have supplier forms and questionnaires that require completion, maybe so your procurement team can put us on a system or your IT team can assess us for data security.


To maintain our low sales price we have to run a fairly efficient business model, and that means unfortunately we don't have the resource to complete these forms for you.


What we aim to do is provide as much information as possible is available on this Help Center, we find in most instances the answers can be found in our



Security FAQs


✅ Current security practices

We’ve put the following protections in place to safeguard your data:

  • HTTPS encryption

All communication between your browser and our servers is encrypted over HTTPS.

  • Encrypted databases at rest

Your data is securely stored using encryption at rest to prevent unauthorized access.

  • Automatic database backups

We continuously back up our database to ensure your data is safe, even in the case of unexpected issues.

  • Server & framework-level security

All standard security best practices are followed, including:

    • Regular OS and framework patches
    • Firewall and network-level protections
    • Input validation and rate limiting
  • Google Cloud security

Our infrastructure is hosted on Google Cloud, and we leverage all their standard security tools including:

  • Google Cloud roles and policies
    • Encrypted storage
    • Secure VPCs and access management




✅ YES, absolutely!

It's a big resounding yes to all the following questions:

  • Is data encrypted in transit over HTTPS?
  • Is data encrypted at rest?
  • Is data hosted in the US?
  • Are passwords hashed and salted?
  • Do you conduct regular vulnerability scans?
  • Do you have remote backups?
  • Are backups encrypted?
  • Do you have a Web Application Firewall?
  • Do you have protection from DDoS attacks?
  • Is Database access firewalled and user restricted?
  • Do staff have to sign confidentiality agreements?
  • Do you do regular software updates?
  • Do you have a publicly disclosed change log?
  • Do you monitor and disclose service uptime?
  • Can I delete my account and all data?
  • Are hardware devices on laptops encrypted?
  • Do you host in the cloud, with Google Cloud?
  • Can I take backups of our data to Excel?
  • Do you provide an up to date list of 3rd party processors?
  • Do you offer 2FA?


❌ NO, absolutely not.

And a no to these questions:

  • Do you store debit/credit card details?
  • Do you store data outside the US?
  • Do you sell data?



If however you can't find a given answer then do send the question through to us and we'll do our level best to answer it.


Contact support

Updated on: 10/17/2025

Was this article helpful?

Share your feedback

Cancel

Thank you!