Hatica TrustSecurity at Hatica

Compliance

CCPA

Hatica is fully committed to the California Consumer Privacy Act (CCPA). The CCPA is a law that allows any California consumer to request all the information a company has saved on them, as well as a full list of all the third parties that data is shared with. If you wish to request your information that Hatica has collected from you, please submit your request to contact@hatica.io.

GDPR

Hatica is in full support of the General Data Protection Regulation (GDPR). GDPR is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. The regulation allows EU citizens to request all the information a company has saved on them, in addition to requesting that all personal information is removed from a company’s systems and any subprocessors who have handled their data. If you wish to request your information that Hatica, and its subprocessors, have collected from you, please submit your request to contact@hatica.io.

Product Security

We’re committed to building a product with a robust set of security features to keep you and your customers safe.

Audit Logs

Hatica audit logs capture all changes made to trust center content including topics, roadmap items, FAQs, and resources. The log tracks the type of change, the time it happened, the member who made the change, and when applicable, the version history of the change. This includes all comments and member activity such as invitations and joins.

Google SSO

Google SSO enables Gmail and G Suite users to sign in to other applications such as Hatica using their Google account. SSO simplifies the management of passwords and identity, helping improve security by reducing the potential for stolen passwords among other attacks.

Data Security

Data Encrypted At-Rest

Hatica data is hosted at Amazon Web Services (AWS). All data is encrypted at rest with AES-256, block-level storage encryption. Keys are managed by Amazon, and individual volume keys are stable for the lifetime of the volume. You can find more detail about EBS encryption here.

Data Encrypted In-Transit

Hatica uses HTTPS for all applications and SSL for all database connections to protect sensitive data transmitted to and from applications.

Privacy

Privacy Policy

Your privacy is important to us. It is Hatica’s policy to respect your privacy regarding any information we may collect from you across our website. Hatica only collects data that we need and only retains it for as long as necessary.

Hatica does not share any personally identifying information publicly or with third-parties, except when required to by law.

Read our privacy policy in full here.

Incident Management

Data Breach Notification

In the event of unauthorized access to data, Hatica will notify its customers and other affected parties about the breach within 24 hours, or as required by law, as well as take specific steps to remedy the situation to prevent future incidents.

Incident Response Plan (IRP)

Hatica has an Incident Response Policy that outlines its Security Incident management process. The policy describes escalation procedures and communication plans in case of an incident. It ensures incidents are remediated as quickly as possible and keeps affected customers informed.

Availability and Reliability

Status Page

Hatica’s system availability can be viewed in real-time at https://status.hatica.io.

Organizational Security

Confidentiality Agreements

Hatica will provide documents upon request. Please submit your request to contact@hatica.io.

Employee Security Training

Employee Workstations Automatically Locked

Employee Workstations Encrypted

Business Continuity

Business Continuity Plan

Data Backups

Hatica has automated data backups that run daily to protect against data loss.

Infrastructure

Hatica hosts its application on Amazon Web Services. Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. For additional information visit the AWS Security page.

NamePurposeLocation
Amazon Web Services Hosting service provider USA
Hasura Data service provider USA
Intercom Customer service and live chat USA
Zoho Helpdesk Customer service USA
Segment Customer data and product improvement USA
Mixpanel Product Analytics USA
New Relic Monitoring and logging stability USA
Posthog Product Analytics USA

Business Continuity

If you believe you’ve discovered a security-related issue, please contact us at contact@hatica.io

Ready to dive in?Start your free trial today.

North star dashboard from Hatica