Security & Compliance
Enterprise-grade security for your gym data
Data Security Measures
AES-256 Encryption at Rest
All data stored with military-grade encryption
TLS 1.3 in Transit
Secure data transmission with latest protocols
Zero-Trust Architecture
Every request verified and authenticated
Multi-Factor Authentication
Optional 2FA for enhanced account security
Regular Key Rotation
Automatic encryption key updates
Secure Backups
Encrypted backups with geographic redundancy
Infrastructure & Hosting
Cloud Provider
Hosted on AWS with SOC 2 Type II compliance and 99.99% uptime SLA
Geographic Redundancy
Multi-region deployment with automatic failover capabilities
Network Security
WAF protection, DDoS mitigation, and VPC isolation
Compliance & Certifications
Payment Security
Data Protection
Security Audits & Testing
We maintain the highest security standards through regular testing and audits:
Regular Audits
- Quarterly internal security reviews
- Annual third-party penetration testing
- Continuous vulnerability scanning
- SOC 2 Type II annual audits
Bug Bounty Program
We work with ethical hackers to identify and resolve security vulnerabilities.
Report vulnerabilities: security@fitsquirrel.com
Incident Response & Monitoring
24/7 Monitoring
Continuous monitoring with automated threat detection and alerting
Rapid Response
1 hour response time for critical security incidents
Transparent Communication
Clear communication during incidents via status page and email
Incident Response Process
- Immediate containment and assessment
- Customer notification within 24 hours
- Detailed investigation and remediation
- Post-incident report and preventive measures
Security Contact
For security-related inquiries, vulnerability reports, or compliance questions:
Security Team
Email: security@fitsquirrel.com
PGP Key: Available on request for sensitive communications
Response Times
Critical: Within 1 hour
High: Within 4 hours
General: Within 24 hours