Matchpeg takes your security seriously:
- Matchpeg's software runs over a secure (HTTPS) connection.
- Matchpeg's servers are housed in a secure, state-of-the-art facility.
- Matchpeg's servers are locked down, leaving an absolute minimum of services open to the outside world.
- Each customer's data is rigidly segmented from all other customers.
- Passwords are held in our database in a strongly encrypted form.
- Matchpeg prevents dictionary attacks on users' passwords. Users are automatically locked out (temporarily) if they make too many incorrect login attempts.
- Users can log in using a personal digital certificate - potentially more secure than a user name and password.
- Matchpeg does not store credit card information for normal (pay-as-you-go) purchases. (Card details only have to be stored if you are a subscriber, and are held in our database in a strongly encrypted form.)
- Matchpeg uses security best-practises in its software. For example, our tools are not and never have been vulnerable to JSON-based attacks.
- Customers have very fine-grained control over what each user in their organisation is allowed to do.
- Customers can bar or modify user accounts within their firm instantly, with immediate effect.
- Matchpeg provides alternatives to uploading sensitive files: store documents as links to files on your local network, rather than uploading them over the internet onto our servers.
