Serious about your security
You can count on us to keep your data secure
With data that’s encrypted in transit and at rest, and with credentials that are salted and hashed, you can feel secure about what’s happening to your information.
RallyUp uses AWS for our infrastructure, utilizing multiple defense mechanisms, including:
Utilization of a WAF (web application firewall) to defend against attacks
A private VPC infrastructure host with strict access control
Utilization of CloudTrail to allow for activity monitoring and the identification of security risks
You can count on our platform to be reliable. When it comes to uptime and availability, we took extra care to build-in infrastructure redundancy so that localized failures do not cause downtime.
Our application is hosted across multiple AWS availability zones with auto-scaling. We’re proud to provide a 99.9% uptime commitment to our customers.
We’ve also instituted database mirroring to ensure that no data is lost. Backups are made daily and regionally, and policies and procedures for database recovery are in place so you can do business without disruption.
We know how much privacy matters. That’s why we’re open and honest about how we ensure that all of our users’ data stays private.
We never sell customers’ or users’ personal information. Donor data collected by an organization belongs only to that organization and can be exported by that organization.
Credit cards are processed through the secure third-party processor Stripe. They are tokenized before reaching and being charged by RallyUp servers so that raw data is never in our hands.
Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This most stringent level of certification is only available to those organizations that use best-in-class security tools and practices to maintain a very high level of security.
The EU General Data Protection Regulation is a set of rules which governs the processing and monitoring of EU data. RallyUp has taken the steps necessary to comply with GDPR by building features that allow users more control and visibility over their personal data. We have updated our terms and privacy policies to fulfill GDPR requirements.
The California Consumer Privacy Act provides California residents certain rights with respect to their personal information. To comply with the CCPA, RallyUp built features that allow users more control and visibility over their personal data and updated our terms and privacy policies to fulfill CCPA requirements.