Security at Brand Vigilant

Security Overview

Brand Vigilant is built on a foundation of security best practices. We protect your data using industry-leading security measures and undergo regular audits to ensure our systems remain secure.

Infrastructure Security

Data Centers

Our infrastructure is hosted on Google Cloud Platform (GCP) in SOC 2 Type II certified data centers. We use:

• Cloud Run for containerized services with automatic scaling
• Cloud SQL (PostgreSQL) with automatic backups and point-in-time recovery
• Redis (Memorystore) for caching with encryption at rest
• Cloudflare R2 for secure object storage

Network Security

• DDoS protection via Cloudflare
• Web Application Firewall (WAF) for application-layer protection
• Network segmentation between services
• Regular vulnerability scanning and penetration testing

Application Security

Development Practices

• Secure code review for all changes
• Dependency scanning for known vulnerabilities
• Static application security testing (SAST)
• Regular security training for developers

Authentication

• Secure password hashing using bcrypt
• JWT tokens with short expiration times
• Support for multi-factor authentication (MFA)
• Session management with automatic timeout

Operational Security

• 24/7 monitoring and alerting
• Incident response procedures
• Regular backups with tested restoration
• Business continuity planning

Compliance

We are committed to maintaining compliance with industry standards and regulations:

• GDPR: Full compliance with EU data protection regulations
• SOC 2: Infrastructure hosted on SOC 2 Type II certified platforms
• Data Protection: Regular assessments and privacy impact analyses

Reporting Security Issues

We take security vulnerabilities seriously. If you discover a security issue, please report it responsibly:

• Email: [email protected]
• Please include details of the vulnerability and steps to reproduce
• We will acknowledge receipt within 24 hours
• We do not pursue legal action against good-faith security researchers