We use a third-party, top-tier datacenter that maintains several industry-recognized certifications, including FedRAMP, ISO, SOC, PCI and more. Our hosting provider is also compliant with numerous regulation, privacy standards, and frameworks, including HIPAA, HITECH, GLBA, the EU Data Protection Directive, EU-US Privacy Shield, FISMA, and more than 30 others. For more information, please visite Amazon AWS security website https://aws.amazon.com/security/
All user data is transported securely, as all traffic is encrypted in transit via SSL. Encrypting the data protects it from unauthorised modification and man-in-the-middle attacks. We use 256-bit SSL/TLS.1.2 encryption, utilising both the ECDSA and RSA algorithms.
Maze does not store any credit card information. We have partnered with Stripe for credit card processing. They power online transactions for thousands of business and SaaS platforms and comply with PCI level 1 standards in the storage and handling of credit card information.
If you have any security questions or if you believe you have found a security vulnerability please don't hesitate to contact our security team at firstname.lastname@example.org.