Data Hosting and StorageForest services and data are hosted in Amazon Web Services (AWS) facilities (us-east-2) in the USA.
Failover and DRForest was built with disaster recovery in mind and regularly tests disaster recovery processes.
Backups and MonitoringOn an application level, we produce audit logs for all activity, ship logs to Papertrail for analysis and use S3 for archival purposes. All actions taken on production consoles or in the Forest application are logged.
Permissions and AuthenticationAccess to customer data is limited to authorized employees who require it for their job. Forest is served 100% over https. Forest runs a zero-trust corporate network. There are no corporate resources or additional privileges from being on Forest's network. We use 2-factor authentication (2FA) and strong password policies on all our accounts to ensure access to cloud services are protected.
EncryptionAll data sent to or from Forest is encrypted in transit using 256-bit encryption. Our API and application endpoints are TLS/SSL only.
Pentests and Vulnerability ScanningForest uses third party security tools to continuously scan for vulnerabilities. Twice yearly we engage third-party security experts to perform detailed penetration tests on the Forest application and infrastructure.
Incident ResponseForest implements a protocol for handling security events which includes escalation procedures, rapid mitigation and post mortem. All employees are informed of our policies.