Security

We know how critical your data is to you, therefore security is at the forefront of everything we do.

Some of the steps we take to ensure your security include

Cloudcraft Live security

Cloudcraft Live allows you to optionally sync your AWS environments with your diagrams. Live was designed from the start to take maximum advantage of the latest AWS security best practices. Specifically, Cloudcraft makes use of cross-account roles, the secure way to access your AWS environment:

All combined, Cloudcraft Live is a safe and secure way for you to explore your AWS environment through our diagrams and visualizations.

Credit card security

If you subscribe to Cloudcraft, your credit card data is not transmitted through nor stored on our systems. Instead, we use a payment processor called Stripe, a company entirely dedicated to this task. Stripe is certified to PCI Service Provider Level 1, the most stringent level of certification available. Read more about Stripe’s security information online.

Need to report a security vulnerability?

Please email us directly at security@cloudcraft.co

Responsible disclosure

We strive to keep Cloudcraft safe and secure for everyone. If you have discovered a security vulnerability we would greatly appreciate your help in disclosing it to us in a responsible manner. We will work with you to assess and understand the scope of the issue and fully address any concerns. Emails are directly sent to our engineering staff to ensure that issues are addressed rapidly. Any security emails are treated with the highest priority as the safety and security of our service is our primary concern.

Questions?

If you have any questions regarding a specific policy that could be made clearer or any general inquiries regarding security, please contact Cloudcraft support.