Security and Encryption

Encryption and security standards 🔒

Author:
Anant Garg
Anant Garg
  • Updated:

📖 2-minute read

When it comes to chatting, security is paramount! Here are the many ways how we keep your data secure & compliant to protect your business and users:

Security Standards

Status

Details

SOC 2

CometChat's compliance has matched the required 5 criteria: security, privacy, availability, confidentiality, & processing integrity!

HIPAA

Need us to sign a BAA? No problem, this will allow you to use CometChat in healthcare apps which share private health information!

GDPR

We even provide a special API so that you can maintain compliance on your end

SSL/TLS

Your data and all the communication within CometChat are encrypted using in-transit

AES-256

All files saved with AES-256 encryption are stored in our private cloud and access is tightly restricted. CometChat proactively conducts regular third-party penetration testing to ensure security and immediately address any slightest potential vulnerabilities

ISO 27001

ISO 27001 is an international standard for managing information security. Achieved through deep comprehensive and careful auditing, obtaining our ISO 27001 validates to our customers and partners about how much we value and, how far we are willing to go to safeguard your data.

💡 Encryption at-rest means the data saved on disks is not readable by any user or application without a valid key

💡 Encryption in-transit protects the server-server/client-server communication over a network. This protection is achieved by
encrypting the data before transmission, authenticating the endpoints, decrypting and verifying the data on arrival


Have more questions? Reach out to our support team today!