Security, Compliance, Practices, and Procedures

Last Updated: August 13, 2024

At Church Service Hub, we prioritize the security of your data and the personal information of your congregation. We are committed to protecting this information through robust physical and technical measures. Below is an overview of the steps we take to safeguard your data, along with the cybersecurity measures we have implemented to maintain the highest level of protection.

AWS Security

Church Service Hub leverages Amazon Web Services (AWS) for our data hosting and storage needs. AWS is one of the most secure cloud platforms available, with industry-leading physical security, redundancy, and availability. AWS's infrastructure is designed to protect your data through a combination of cutting-edge security protocols, including:

• Data Encryption: All data stored within AWS is encrypted both at rest and in transit using advanced encryption standards (AES-256). This ensures that your data is secure from unauthorized access.
• Access Controls: AWS provides robust access control mechanisms, allowing us to enforce strict permissions and monitor access to our systems continuously.
• Redundancy and Availability: AWS's global network of data centers ensures that your data is always available, even in the event of a regional disaster. The platform's redundancy measures provide reliable data access and rapid recovery options.

Cybersecurity Measures

In addition to the security features provided by AWS, Church Service Hub has implemented several other cybersecurity measures to ensure the safety of your data:

• Firewalls and Intrusion Detection: We use advanced firewalls and intrusion detection systems to monitor and protect our network from unauthorized access and malicious activity. These systems are regularly updated and monitored to identify and mitigate potential threats.
• Regular Security Audits: We conduct regular internal and external security audits to evaluate and enhance our security posture. These audits help identify vulnerabilities and ensure that our security practices are aligned with the latest industry standards.
• Data Encryption: In addition to AWS's encryption, we employ end-to-end encryption for all data transmitted between users and our servers. This encryption ensures that sensitive information, such as personal data and financial transactions, is securely transmitted and cannot be intercepted.
• Multi-Factor Authentication (MFA): To further protect access to Church Service Hub, we enforce multi-factor authentication (MFA) for all administrative accounts. This adds an extra layer of security by requiring users to verify their identity through an additional factor beyond just a password.

Secure Coding Practices

Our development team follows secure coding practices to minimize the risk of security vulnerabilities. These practices include:

• Code Reviews: All code changes undergo thorough peer review to ensure that they meet our security standards. This process helps catch potential security issues before they can be introduced into the production environment.
• Automated Testing: We use automated testing tools to scan our codebase for vulnerabilities and ensure that our software is resilient to common security threats.
• Manual QA Testing: In addition to automated tests, our quality assurance team manually tests new features to identify and resolve any potential security issues.

Data Durability and Recovery

Church Service Hub employs a comprehensive data backup and recovery strategy to protect against data loss:

• Automated Backups: We perform regular automated backups of all critical data, ensuring that we have up-to-date copies available in case of an emergency.
• Disaster Recovery Plan: Our disaster recovery plan is designed to quickly restore service in the event of a major disruption. This plan includes procedures for data restoration, system recovery, and communication with users during an incident.

Security Bug Bounty Program

To continuously improve our security, Church Service Hub runs a bug bounty program that invites security researchers to identify and report vulnerabilities. Researchers who find and responsibly disclose security issues are rewarded for their efforts, helping us to address potential risks before they can be exploited.

Reporting a Vulnerability: If you discover a security vulnerability, you can report it to our security team at security@churchservicehub.com. We take all reports seriously and will investigate and address the issue promptly.

Physical Security

All data managed by Church Service Hub is housed in AWS data centers, which are secured with top-tier physical security measures. These data centers are equipped with:

• 24/7 Security Monitoring: AWS data centers are monitored around the clock by trained security personnel, and access is strictly controlled.
• Surveillance and Access Control: Physical access to data centers is limited to authorized personnel only and is controlled through biometric scanners, surveillance systems, and security checkpoints.

Local Equipment Security

Our office and local equipment are protected by a range of security measures:

• Secure Access: Our physical office spaces are secured with locks and alarms during off-hours. Access is limited to authorized personnel, and all local computers are password-protected and encrypted.
• Remote Work Security: Employees accessing customer data remotely must use encrypted connections and secure devices. Multi-factor authentication (MFA) is required for all remote access to sensitive systems.

Personnel Security

We are committed to building a security-conscious team at Church Service Hub:

• Employee Training: All employees undergo regular training on security best practices, including phishing awareness, secure password management, and data protection.
• Non-Disclosure Agreements: Every employee signs a non-disclosure agreement (NDA) to ensure that company and customer data is kept confidential.

Security Culture

At Church Service Hub, we understand that security is not just about technology -- it's about people. Our team uses Church Service Hub for their personal needs, which means our data is stored alongside yours. This personal connection drives our commitment to protecting your data with the same care and diligence that we use to protect our own.

Questions

If you have any questions or concerns regarding the security of your data, please do not hesitate to reach out to us at contact@churchservicehub.com. We are here to provide clarity and support to ensure that your data remains secure.