Security Policy
1. Introduction
At ReSMS, we take the security of our users' data seriously. This page outlines the technical and organizational measures we implement to ensure a secure environment for sending and managing SMS communications.
2. Infrastructure Security
ReSMS is hosted on Amazon Web Services (AWS), which provides a secure and scalable infrastructure. We rely on AWS’s built-in security features, including physical data center security, DDoS mitigation, firewalls, and monitoring.
3. Data Encryption
All data transmitted between clients and our servers is encrypted using TLS (HTTPS). Sensitive data stored at rest is encrypted using industry-standard encryption mechanisms provided by AWS.
4. Access Controls
Access to production systems is restricted to authorized personnel only and protected by multi-factor authentication (MFA). Access rights are reviewed regularly and follow the principle of least privilege.
5. Application Security
We follow secure development practices, including code reviews, dependency monitoring, and automated testing. Regular audits and penetration tests help identify and address potential vulnerabilities.
6. Incident Response
ReSMS has a documented incident response plan to handle security breaches efficiently. Users will be notified of any breach affecting their data, in accordance with GDPR and applicable laws.
7. Responsible Disclosure
If you believe you have found a security vulnerability, please contact us at security@resms.dev. We encourage responsible disclosure and commit to reviewing all submissions promptly.
8. Service Status
You can view the current operational status of our platform at https://status.resms.dev/.