Security &
Compliance

Infrastructure Security

• check_circle
  

  Encryption

  Data in transmission and at rest is protected by 256-bit TLS and AES256 encryption.

• check_circle
  

  Authorization

  Supports flexible authorization schema via OAuth and SAML SSO.

• check_circle
  

  Storage

  Data is transmitted and stored solely within the US and EU for added PII compliance.

• check_circle
  

  Defense

  Inbound ports are closed; to thwart attack, data routs simultaneously to multiple data centers.

Application Security

• check_circle
  

  Traffic Encryption

  Application traffic, network traffic and data in transit are protected by SSL, SSL/TLS, and AES-256 encryption.

• check_circle
  

  OAuth & JWT

  Platform employs token-based access security for in-app data transfers.

• check_circle
  

  Three-Tier Firewall

  Writer employs distinct data-layer, service-layer, and presentation-layer firewalls.

• check_circle
  

  Port Security

  Public access ports are highly restricted, and Writer adheres to enterprise best practices for port security.

• check_circle
  

  Logs & Alerts

  Centralized logging and alerts enable real-time security monitoring.

• check_circle
  

  Infrastructure Protection

  Multilayer access control enabled for primary and secondary platform infrastructure.

Data Protection

The DLP API lets you understand and manage sensitive data. It provides fast, scalable classification and optional redaction for sensitive data elements like credit card numbers, names, social security numbers, passport numbers, US and selected international driver’s license numbers, and phone numbers. The API classifies this data using more than 50 predefined detectors to identify patterns, formats, and checksums, and even understands contextual clues. The API supports text and images.