Security

Security and trust are integral at Bookee. We have achieved audit certification for Service Organization Controls (SOC 2) Trust Services Principles, focused on security. Our continued SOC 2 certification ensures our organizational and technology controls are independently audited at least annually. Please contact privacy@bookeeapp.com for Bookee's latest report.

Bookee customer data is hosted by Amazon Web Services (AWS), which is certified SOC 2 Type 2. AWS maintains an impressive list of reports, certifications, and third party assessments to ensure complete and ongoing state-of-the-art data center security.

AWS infrastructure is housed in Amazon-controlled data centers throughout the world, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access. More information on AWS data centers and their security controls can be found here.

All Bookee web application communications are encrypted over TLS 1.2, which cannot be viewed by a third party and is the same level of encryption used by banks and financial institutions. All data for Bookee is encrypted at rest using AES-256 encryption.

Bookee maintains ongoing PCI compliance, abiding by stringent industry standards for storing, processing and transmitting credit card information online.

Bookee actively monitors ongoing security, performance and availability 24/7/365. We run automated security testing on an ongoing basis. We also contract a third party for penetration testing.

Regarding privacy, we are members of the Privacy Shield framework and you can view our full privacy policy here:

For more information on Bookee's Security Policy click here

Bookee's infrastructure is hosted in a fully redundant, secured environment, with access restricted to operations support staff only. This allows us to leverage complete data and access segregation, firewall protection, and other security features.