Data encrypted in transit
We use TLS 1.2+ for external connections and TLS 1.3 with encrypted internal connections. Our certificate management, backed by Google Cloud Certificate Authority Service, ensures high availability and scalability.
Data encrypted at rest
Our encryption, backed by Google Cloud Key Management Service, uses AES-256-GCM and FIPS 140-2 Level 1 compliant cryptographic modules.
Vulnerability management
We use tools like GitHub and Vanta to scan for vulnerabilities, and regularly scrutinize our software with static analysis security tools.
Customer-level encryption
We use a unique encryption key per customer to separate customer data, log access to encryption keys, and encrypt sensitive information at the application level before storage.
Reliability
Friday infrastructure is cloud-native, built on Google Cloud with multi-zone redundancy and automated failover.
SOC 2 Type 2
We are SOC 2 Type 2 certified and implement the following controls: identity and access management, multi-factor authentication, security monitoring, access restrictions, availability, and privacy.
Database isolation
Tenant data isolation is enforced at both the application and database layers, providing multiple layers of protection.
Supply chain security
We continuously scan and update dependencies across all components, with automated security checks on every code change.
Auditable deployments
All infrastructure changes are version-controlled and deployed through automated pipelines with full audit trails.
Infrastructure hardening
We enforce strict workload security standards and network segmentation policies, limiting the impact of potential security incidents.
Contact us
For any security-related questions, contact our team at security@hellofriday.ai. We take protecting your data seriously and will respond as quickly as possible.