As users of our own product, we understand how important the security and privacy of your data is.
As well as all data being encrypted and backed up hourly, we also track all the latest security community outputs, promptly upgrade our services to fix new vulnerabilities and constantly make sure we are using the latest technology available. 🔒
Keep reading for more detailed information on our policies and practices.
All transmissions to and from monday.com, including sign-on, are encrypted at 256-bit and sent through TLS 1.2, adhering to the FIPS 140-2 certification standard.
External Security Audits and Penetration Tests
We work closely with industry leaders in web app and infrastructure security who perform penetration tests and audits of monday.com. We monitor our product for security vulnerabilities automatically as the product grows.
Where are my files hosted?
All of your data and files are hosted in a secure physical location. Our servers are stored in multiple data centers of Amazon Web Services across the US. They've devoted an entire portion of their site to explaining their security measures, which you can find here.
Unfortunately, you cannot back up files and data on your own servers as monday.com is hosted on a cloud server.
Our engineering and operation teams keep their skills up to date regarding security best practices. We have coded many different online systems and are experienced in infrastructure security and systems security.
We're committed to making monday.com a highly available service that you can always count on.
We take measures and build the product to tolerate a failure of individual components and we make sure to keep the service up while doing maintenance work on our infrastructure.
We consistently backup the data of our customers. Critical data is backed up every 5 minutes (this includes all customer data), and non-critical data on a daily basis.
Attachments in your account are encrypted and delivered on a per-user-access controlled basis.
We know the data you share in monday.com is private and confidential. We have strict controls over our employees' access to internal data and we are committed to ensuring that your data is never seen by anyone who should not see it.
With that said, the operation of monday.com wouldn't be possible without a few members having access to our databases in order to optimize performance and storage. This team is prohibited from using these permissions to view customer data without explicit, written permission from the user.
If you have any questions, please reach out to our team by using our contact form. We're available 24/7 and happy to help!