Hey folks, my organisation has some questions about the security frameworks in place at Softr. The security page seems to just talk about the security that AWS has in place, and not if softr itself has SOC 2 certification etc. Could you please let me know what security is in place (specific questions below that I need to report on).
1- “Are you SOC type 1 or SOC 2 certified?”
2- “Are there other information security frameworks Softr currently follows? Please provide names and additional details regarding implementation. For example ISO 27000, NIST, GDPR etc.”
3- “In the past 12 months, have you had a third party conduct a penetration test of your platform and infrastructure?”
4- “Do you have a physical security policy?”
5- “What country is the information of my members stored?”
6- “Are you able to tell me what platform you use for hosting i.e. AWS?”