Data is encrypted in transit with TLS 1.2. Data is encrypted at rest with AES.
At Refuel, maintaining data security and privacy for our customers is a top priority.
We use enterprise-grade security, undergo regular audits and are compliant with SOC 2 and GDPR to ensure you’re always protected. We undergo regular penetration testing and security reviews, and the commitment to security is ingrained in our culture.Â
If you have questions about our security practices or programs, please email us at security@refuel.ai.
Data is encrypted in transit with TLS 1.2. Data is encrypted at rest with AES.
Third-party penetration, threat, and vulnerability testing.
Well-defined incident detection and response programs.
User access controls with single sign-on.
Refuel's cloud environments are backed by AWS' security measures.
Role-based account access workflows. Approach customer data with the principle of least privilege.
We perform a third-party penetration test at least annually to ensure that the security posture of our services is uncompromised.
Our team members are required to go through employee security awareness training covering industry standard practices and information security topics such as phishing and password management.
Our organization undergoes independent third-party assessments to test our security controls, such as SOC 2.
Roles and responsibilities related to our information security program and the protection of our customer’s data are well defined and documented.
We have an information security program in place that is communicated throughout the organization.
We continuously monitor our security and compliance status to ensure there are no lapses.
