Security
An overview of Onedoc security features and practices.
Your confidentiality, our priority
We know that the confidentiality of your data is critical to your business. That’s why we take security seriously at Onedoc. We have implemented a comprehensive set of security practices to ensure that your data is protected at all times.
End-to-end safety
Onedoc end-to-end security process
Onedoc guarantees confidentiality and isolation of each and every document, even for the same account.
Important safety considerations
By default, Onedoc allows the PDF renderer to fetch external resources. This means you must sanitize any potential user generated content before sending it to Onedoc. While this may not compromise the confidentiality of your data, it may allow an attacker to track your usage.
Our Principles
Onedoc establishes policies and controls, monitors compliance with those controls, and proves the security and compliance to third-party auditors.
Our policies are based on the following foundational principles:
Authentication
Strict user authentication protocols are in place, ensuring that only authorized personnel can access sensitive documents and information.
Regular Auditing
We conduct regular audits to rigorously assess and enhance our security measures, maintaining the highest standards of data protection.
Data Encryption
Every piece of data, especially sensitive and private information, is encrypted in transit and at rest, ensuring maximum security against unauthorized access.
Incident Response Plan
A comprehensive incident response plan is established to quickly and effectively address any security breaches or threats.
Privacy Compliance
Our security practices are aligned with global privacy standards, ensuring compliance with regulations like GDPR and SOC2.
Transparent Reporting
Transparent reporting mechanisms are in place, providing clear visibility into our security operations and compliance status.
Compliance Standards
Data Protection
Data at rest
All datastores are encrypted at rest. Sensitive collections and tables also use row-level encryption.
Data in transit
Resend uses TLS 1.3 or higher everywhere data is transmitted over potentially insecure networks.
Data backup
Resend backs-up all production data using a point-in-time approach. Backups are persisted for 30 days, and are globally replicated for resiliency against regional disasters.
In-house security
Endpoint protection
All company devices are equipped with anti-malware protection. Endpoint security alerts are monitored with 24/7/365 coverage. We use MDM software to enforce secure configuration of endpoints, such as disk encryption, screen lock configuration, and software updates.
Education
Onedoc provides comprehensive security training to all employees upon onboarding and annually. Onedoc conducts threat briefings with employees to inform them of important security and safety-related updates that require special attention or action.
ID & Access
Onedoc employees are granted access to applications based on their role, and automatically deprovisioned upon termination of their employment. Further access must be approved according to the policies set for each application. Multi-factor authentication is required for all employees to access company applications.
OneDoc is actively working to fulfill all the above-mentioned commitments. Please contact support for the most current update on our security status.
Was this page helpful?