Introducing Evento's New Security Page: Your Events, Your Privacy, Our Priority
7/25/2024
At Evento, we've always believed that creating and managing social events should be easy, fun, and most importantly, secure. Today, we're excited to announce the launch of our new security page (evento.so/security), which outlines our commitment to protecting your data and privacy. In this post, we'll dive deeper into our security practices and explain why Evento is the most secure social events app you can trust.
The Foundation of Our Security
From day one, we've built Evento with security at its core. We understand that your event details, guest lists, and personal information are sensitive, and we treat them with the utmost care. Our approach to security is based on three key principles:
- Use of Battle-Tested Technologies
- Partnerships with Trusted Third-Party Providers
- Continuous Innovation in Security Features
Let's break down each of these principles and see how they contribute to making Evento a fortress for your event data.
Battle-Tested Technologies
We believe in using proven, reliable technologies rather than reinventing the wheel. This approach allows us to focus on creating the best user experience while ensuring top-notch security. Some of the technologies we use include:
- Redis and Postgres for data storage: These databases are known for their reliability, performance, and security features.
- JSON Web Tokens (JWTs) and session tokens: These ensure a secure authentication layer, protecting your account from unauthorized access.
- Passwordless Authentication: We've eliminated the risks associated with traditional passwords by using magic links and 6-digit OTP codes for logging in. This method ensures that you, the user, always maintain control of your account through your email.
Trusted Third-Party Providers
We've partnered with some of the most reputable names in the tech industry to provide a secure and performant infrastructure:
- Amazon Web Services (AWS): We use AWS for hosting and various other services, benefiting from their world-class security measures and global infrastructure.
- Vercel: Our hosting, deployment, and content delivery network (CDN) are powered by Vercel, ensuring incredibly fast and low-latency access to our services worldwide.
- Resend: For secure and reliable email support.
- PostHog: Helps us with product analytics and A/B testing, allowing us to improve our service while respecting your privacy.
- Postgres: For secure and efficient long-term data storage.
- Redis: Used as a memory cache to enhance performance without compromising security.
Continuous Innovation in Security Features
While we rely on proven technologies, we're also constantly innovating to enhance our security measures. Some of our upcoming security features include:
- Granular Privacy Controls: We're implementing features that allow users to control what information is shared with their guests. Hosts will be able to toggle the visibility of various event details, such as location, title, date, comments, gallery, and guest list.
- Future Enhancements: We're working on adding phone SMS verification for additional account security and two-factor authentication for sensitive actions and profile changes.
Compliance and Data Protection
We take data protection regulations seriously. Evento is committed to complying with global standards such as GDPR and CCPA. Here's how we ensure compliance:
- Right to be Forgotten: Users can request complete deletion of their data by contacting our support team.
- GDPR-Compliant Cookies and Tracking: We follow all requirements for cookie policies and user tracking.
- Data Minimization: We only fetch and display data that is relevant and necessary for each user interaction.
Disaster Recovery and Business Continuity
We understand that your events don't stop, so neither can we. That's why we've implemented robust disaster recovery and business continuity measures:
- Automated Backups: Our databases undergo extensive daily backup processes.
- Quick Recovery Processes: In the unlikely event of downtime or issues, we can easily and safely retrieve data on the fly.
- Minimal Downtime: While we strive for zero downtime, in case of a major disaster, we may need to go offline briefly to resolve issues and ensure a safe return to service.
Why Choose Evento for Your Events?
Security in the digital age is not just about protecting data; it's about creating an environment where users feel safe and in control. At Evento, we've gone to great lengths to ensure that your event planning experience is not only seamless and enjoyable but also secure and private. By choosing Evento, you're opting for:
- A platform that uses cutting-edge, battle-tested security technologies.
- An app that partners with industry leaders in cloud computing and web services.
- A service that continuously innovates to stay ahead of potential security threats.
- A company that respects your privacy and complies with global data protection regulations.
We believe that your focus should be on creating amazing events, not worrying about data security. That's why we've made it our mission to handle the complex security aspects, allowing you to concentrate on what matters most – bringing people together.
As we continue to grow and evolve, our commitment to your security remains unwavering. We invite you to visit our new security page at evento.so/security to learn more about our practices and policies.
Your trust is the foundation of our success, and we're dedicated to earning and maintaining it every day. If you have any questions, concerns, or suggestions regarding our security measures, please don't hesitate to reach out to our support team.
Thank you for choosing Evento. Here's to many secure, successful, and memorable events ahead!