SMYLS physical infrastructure is hosted and managed within Microsoft Azure secure data centres. We utilize their built-in security, privacy, and redundancy features, including AWS's ability to perform regular backups. Azure complies with leading security policies and frameworks, including ISO 27001, SOC 1 and SOC 2.

Hosting on Azure allows SMYLS to remain resilient, even if one location goes down. Azure spans across multiple data centres within a particular region (called availability zones), which allows SMYLS servers to remain resilient in the event of a failure, including natural disasters or system failures.

We've enabled Azure’s security features like intrusion protection system and Web Application Firewall.

Data that passes through SMYLS is encrypted, both at transit and at rest. We also encrypt all volumes where customer data is stored, and we also individually encrypt all backups. Data in transit is encrypted using TLS 1.2, ECDHE_RSA with P-256, and AES_128_GCM and at rest using AES 256 encryption.

Azure follows industry best practices and has strict physical access policies for the data centre building.

SMYLS has continuous and automated monitoring and vulnerability scanning on the Azure infrastructure so that we are proactive and have a complete awareness of any potential vulnerabilities, incidents, and threats.

SMYLS backs up customer data daily, to data servers independent of our application servers, in independent locations. All backup data is encrypted at rest and transit.