Campvana Security
Campvana Website Connection Always Secure
Campvana is a HSTS preloaded
domain.
What does this mean?
Google's Chrome team maintains a list of websites that should only be
connected over a secure connection. When anyone navigates to
Campvana from an up to date web browser, such as Chrome or Firefox,
the connection is always made securely. For domains not preloaded,
the initial connection is insecure.
Award Winning Password Storage
Campvana uses Argon2, winner of the 2015 Password Hashing
Competition, to securely store your password.
What does this mean?
In the worst case scenario of Campvana's database being hacked, the
hacker would not know your password and would be forced to very slowly
guess.
Access Control and Data Privacy
Unless given approval, Campvana staff do not access user information
as a part of normal operations.
Campvana does not sell your data to third parties and we do our best
to limit the data exposed to third parties while still providing
quality service and a quality product.
High Quality, Secure Infrastructure
Campvana is built on Heroku which is built on Amazon Web Services (AWS).
What does this mean?
Amazon's data centers are very secure and trusted by government
agencies and Fortune 500 companies.
Amazon's data center operations have been accredited under:
- ISO 27001
- SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
- PCI Level 1
- FISMA Moderate
- Sarbanes-Oxley (SOX)
Data Encryption
Campvana encrypts your data at rest using database level
encryption and in transit using
HTTPS for maximum data security
What does this mean?
When you request data from Campvana, the data is transmitted securely
to you. Even if someone obtains the physical hard drive where your
data is stored, they can't read it.