Security

Our commitment.


Our Stack

AWS, Ruby on Rails
Postgres, Redis

We are hosted on Heroku (AWS). Our datastores are Postgres, S3, and Redis.



Encryption

At rest and in transit

Our databases and S3 buckets are encrypted at all times using AWS KMS. All communication is encrypted in transit.



Access Controls

Built-in the product

Our employees do not have access to your data unless you explicitly authorize them. Our application is built with this philosophy.



SOC2 Type I

Compliance

We are currently preparing our SOC2 Type I and have picked Schneider Downs to perform our audit. To request a copy of this document, please use the form below.



Privacy Shield & GDPR

Compliance

Pima is compliant with Privacy Shield and GDPR. If you have questions about your data please reach out to privacy@pima.app.



Disclosure

security@pima.app

If you have any concerns about security or would like to report a security issue, please reach out to our team at security@pima.app. Include the details of your concerns or finding and we will get back to you.