Security, Privacy, and Compliance

Our platform has robust security measures in place to safeguard the transmission and storage of the information you share with us.


Top Security and Privacy Features

Any questions? Drop us a line at support@drafted.us


GDPR Readiness (coming soon)

We are working to be GDPR ready by the time the regulation goes into effect. More on this soon.


Authentication & Passwords

Drafted supports SSO using OAuth2 for Google Sign In. For other users, Drafted uses Argon2id password hashing and best practices in implementation. Don't worry, we didn't forget the salt.


Cloud Data Protection Standards

Drafted services run on Amazon Web Services (AWS) and DigitalOcean which are physically secure, employ modern software security techniques, and require multi-factor authentication for access. The AWS and DigitalOcean clouds meet several global security standards such as ISO 27001 and SOC.


Access Control & Encryption

Our employees know how to handle your data - we enforce multi-factor authentication for all internal systems and third party services where it is supported, and an internal data access policy is required learning for new employees. No data on Drafted is ever transmitted on an un-secure connection, even between internal microservices.


Disaster Recovery

Data backups are handled by Heroku's Data Safety and Continuous Protection backups. Continuous nightly backups that are physically and logically separated allow for secure and reliable rollbacks and retrieval in an emergency.


Continuous Vulnerability Management

We use a third party service to ensure that all of our dependencies are up-to-date and patched if a patch is available. When new known vulnerabilities are found, we are immediately notified with a recommended action to take. Critical vulnerabilities are typically patched same day and non-critical within 2 weeks.


General Data Protection Regulation

The European Union General Data Protection Regulation goes into effect in 2018. We are working hard to make sure that you can stay compliant while using Drafted, and you can read more here.


Have more questions about security?

Read our comprehensive FAQs here or get in touch by emailing contact@drafted.us or in the live chat.


Ready to get started?

Request a demo today.