This article is also available in:
We take security matters very seriously. Here's some information you might want to know.

Where is my data stored?

Your data is stored in our MySQL Database hosted in Microsoft Azure Cloud Environment. The data center hosting our infrastructure is located in Québec City, QC, Canada.

One of the reasons we chose Microsoft Azure to support our infrastructure is its leading position in the Cloud Hosting Industry. Also, it is the Cloud Hosting Service with the most security certifications.


Is my data secured?

Our MySQL Database is IP-restricted to Neatro’s App Service in Microsoft Azure, which means that only the Neatro’s application IP can access your data.

We can restore the database at any state from the last 7 days. Our database backups are encrypted using AES256.

Moreover, our authentication flow uses Microsoft .Net Core Identity, meaning that your password and access tokens are encrypted. (PBKDF2 format (HMAC-SHA256, 128-bit salt, 256-bit subkey, 10,000 iterations))


Is your application secured?

Neatro’s application is an App Service hosted in Microsoft Azure. Only our CTO, Benjamin Cotrel, has access to our Microsoft Azure account. Benjamin uses Two Factor authentication on his Microsoft account and only access Microsoft Azure from his personal desktop computer.

As said previously, we use Microsoft .Net Core Identity; a standard library made and maintained by Microsoft to handle registration, authentication, password reset procedures, email verification process, etc.

Also, all connections to Neatro’s application and database are secured using SSL/TLS.


Can I sign up using SSO?

Yes! You can signup and login to Neatro using your Microsoft account (Office 365, Live, Hotmail, etc.) or your Google account (Personal or Gsuite account).

We also support SAML SSO with Okta and custom providers.


How do you handle payments?

We have chosen to rely on Stripe to handle subscriptions and payments. Stripe is the leader in the online payment industry, ensuring us the highest level of security and transparency in the way you can subscribe to Neatro.


Which other third parties do you use?

Like Stripe, we have decided only to use industry-proven services to assist us in Neatro. These services are :

Crisp to handle chat and support in our website and application

Hubspot for marketing purposes

SendinBlue to send transactional emails

Amplitude and Google Analytics to collect information about Neatro’s application usage

Note that any third-party application can be disabled on demand for your organization.

And that’s it!


Who can I contact for questions about privacy and security?

Benjamin Cotrel, our co-founder, and CTO is our security specialist at Neatro. He will answer any questions about the way we secure our application. Just send him an email at benjamin.cotrel@neatro.io
Was this article helpful?
Cancel
Thank you!