Advanced encryption and security standards to meet your needs

From TLS encryption and security certification to our continuous commitment to a secure environment, Raincheck delivers a secure messaging and infrastructure.

Data Centre & Network Security

Hosting and Storage Facilities

Raincheck hosts its application primarily in Leaseweb data centers that have been certified as ISO 27001, PCI/DSS, SOC 1 Type II, HIPAA and/or NEN 7510compliance.

Encryption

All data sent to or from Raincheck is encrypted in transit using 256 bit encryption.

Our API and application endpoints are TLS/SSL only. This means we only use strong cipher suites and have features such as HSTS and Perfect Forward Secrecy fully enabled.

We also encrypt data at rest using an industry-standard AES-256 encryption algorithm.

Back Ups and Monitoring

On an application level, we produce audit logs for all activity. All actions taken on production consoles or in the Raincheck application are logged.

Back Ups and Monitoring

On an application level, we produce audit logs for all activity. All actions taken on production consoles or in the Raincheck application are logged.

Security and anonymity

Raincheck leverages on Nginx​ Reverse Proxy for all incoming connections provides the outstanding level of security and reliability

Permissions and Authentication

Access to customer data is limited to authorized employees who require it for their job. Raincheck is served 100% over https. Raincheck runs a zero-trust corporate network. There are no corporate resources or additional privileges from being on Raincheck’s network.

Application & Product Security

Raincheck leverages modern and secure open source frameworks with security controls to limit exposure to OWASP Top 10 security risks. These inherent controls reduce our exposure to SQL Injection (SQLi), Cross Site Scripting (XSS), and Cross Site Request Forgery (CSRF), among others.

We enable permission levels within the application to be set for the various user groups. Fine grained ​permission and access management​ gives you full range of options to fine tune permissions and rights regarding your company’s security directives

Raincheck enforces a password complexity standard and credentials are stored using a PBKDF function (bcrypt).

Our Quality Assurance (QA) department reviews and tests our code base. Dedicated application security engineers on staff identify, test, and triage security vulnerabilities in code.

Testing and staging environments are logically separated from the Production

No Service Data is used in our development or test environments

All employee contracts include a confidentiality argument.

Trusted certification to protect the integrity of your brand

We believe in our trusted partners as they provide us with advanced security certifications that brings confident in everything else we do.

Connect Raincheck to your website.

Deliver messaging experience your customers deserve.