All critical connections to OneSky are secured via SSL/TLS. For example, the pages for entering payment information and password.
Any data sent from OneSky by email will be delivered using encrypted transport via Sendgrid.
Separate Application & Data Servers
OneSky’s web application servers are physically and logically separated from servers that store customer data.
OneSky is built according to secure development best practices with security reviews incorporated throughout the design, prototyping and deployment process.
Users must authenticate themselves with a email and password in order to gain access to their data. All passwords are stored as non-reversible hash in the database. We use “cookie” with hashed token to save the session of an user without storing any email nor password information.
All operating systems are hardened to remove all unnecessary software. All servers are built on top of Amazon Web Service with AWS Compliance.
Customer Data Protection
We classify and treat all data as confidential, using inbound and outbound low-level logical firewalls to ensure that data cannot be leaked between OneSky networks.
Your data is backed up multiple times a day. Backups are properly deleted after 1 week.
Servers are monitored 24x7x365. Logs are regularly analyzed to identify patterns of suspicious activity.
Have a question, concern, or comment about OneSky security? Please contact us.