All requests to the web application, even this document and marketing pages, are sent over a Secure Socket Layer (SSL) connection with 256-bit encryption, similar to what banks use to encrypt financial information while in transport over the internet.
Documents uploaded to ServeManager are protected by server-side encryption and private URLs. They are only accessible from an authenticated user request from ServeManager. All uploaded documents are backed up and versioned, so even in the unlikely event that a file gets overwritten, the previous version can be restored. Encryption at rest also protects the data in the event of a physical compromise.
ServeManager is written with Ruby on Rails, a web application framework. Ruby on Rails Security Policy We run the latest version of the language and framework with the most up-to-date security patches available.
Our codebase features a comprehensive test suite that to helps to ensure features function as expected and improvements can be made with confidence. In the software development industry, the technique is referred to as "Test Driven Development (TDD)." It is widely regarded as the most effective way to develop and maintain quality software.
The codebase is version controlled with git and is securely stored in a private repository on Github. Github Security Policy
Application servers are run on Heroku. Heroku's Security Policy
Heroku is built on top of Amazon Web Services. Amazon Web Services Security Center