We take security and privacy seriously, adhering to enterprise-level security standards that keep your customer data protected.
We comply with the EU-U.S. Privacy Shield Framework and Swiss-U.S. See our Privacy Shield participant listing.
Please contact us at [email protected] for information on how to sign our DPA.
Chatlio is GDPR compliant. When you use our services you entrust us with your valuable information. We have made it a priority to protect your data and to provide you with choices about controlling it. See our Privacy summary page for more details about our GDPR compliance.
Our team is constantly monitoring security notifications from all 3rd party software libraries and if identified, we apply any relevant security patches without undue delay. Please contact us at [email protected] if you have any security related concerns or feedback.
All of Chatlio’s application and data infrastructure is hosted on Amazon Web Services (AWS), a highly scalable cloud computing platform with end-to-end security and privacy features built in.
Designed with redundancy, fault tolerance and disaster recovery at the forefront, our databases (Amazon Aurora) are distributed across three separate availability zones (data centers). All our infrastructure is within our virtual private cloud (VPC) with production access restricted to operations support staff only. This allows us to leverage complete firewall protection, private IP addresses and other security features.
For more specific details regarding AWS security, please refer to https://aws.amazon.com/security/.
We strive for a 99.99% uptime across all our products and to support that, we host our monitoring and logging systems outside of AWS and employ a variety of tools to accurately monitor and report on any anomaly that could impact the delivery of our services.
All data is stored in AWS infrastructure, housed in Amazon-controlled data centers. Only those within Amazon who have a legitimate business need to have such information know the actual location of these data centers, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access. It is safe to say Amazon is much better at physical security than we are capable of being, so we leave it to them.
Through the use of automated and manual analysis, as well as constant security review of 3rd party libraries, we ensure to the best of our abilities that we are delivering products that are free from security defects. All Chatlio web application communications support TLS v1.2. We enforce the same level of encryption used by many banks and financial institutions.
We do our best to ensure all customer data is encrypted in transit and at rest while stored in our databases, including user email addresses, user passwords, API keys.
At Chatlio, we understand that security is essential in maintaining the trust you place in us to provide products and services to you. Although our team works vigilantly to help keep customer information secure, we recognize the important role that security researchers and our user community play in helping to keep our users secure. If you are a security researcher and have discovered a security vulnerability in our website or service, we ask for your help in disclosing it to us in a responsible manner.
If you discover a vulnerability or are a customer who is concerned your account has been compromised, please notify us via [email protected] We encourage you to encrypt sensitive information; please see below for our public PGP key.
When reaching out to us, please include:
We believe in placing our users’ interests first. We believe that responsible disclosure involves privately notifying us of any security vulnerabilities and allowing us appropriate time to diligently address the vulnerabilities before making full disclosure to the public. For our part, while we are working on addressing the vulnerability, we will advise customers of potential risk if appropriate where it does not increase the overall risk to customers. We will do our best to notify you as soon as the vulnerability has been addressed and ask that you do not disclose it publicly or share it with others until then.
We appreciate these types of research activities, but will not tolerate any actions that put our users at risk:
The combined contributions of all security professionals in our community are essential to keeping us all secure. We thank everyone in the community for their efforts.
PGP key information: We encourage you to encrypt sensitive information you send to us as a part of your vulnerability disclosure. You can use our PGP key to send us sensitive information via [email protected]:
-----BEGIN PGP PUBLIC KEY BLOCK----- mQINBFxLquYBEACmSoQCmfoD5y9UWg1k1iVfQA+/Gsjtqy7Pnk3w5l3De1R6ledM BKJeE4U4WskvzJZGHwSgXC3tblaqg7ZLvhVLDxLrakJxajYE18bsA6XUfxWRMpiL Hzs058AagDU+ZZuaRTCK4OzkI+o93RrgdIu1C2IF8GJMv/Tna9sz4B7Uw8407yTW DxVAKT/9ndGJgRVbOySRDuvzo43lmFpcARcHZRWdQdMfIi0Qibzq1qJVIPoGfErQ 50ihVOe8/BODzgf5+aR77mfQJaVq8sf6a4Dgh8FcZxwD81fLZCZngIBVVjHpsM8r ydEqV8ZkQdYKjw35VOK9IqLQdo6KiGzGzkLXu+3AplGujqzr31tB2KL1kbR5SZ1p 8GjYu1B0wjAN6horfSuHBQuIaRM8LKTrRN/H04ngPlmsC7pGJrPpQLMSP9ZIlGfH xutDm5M/4bjqDePyp6cD9vDkZHXrokkSFVYEtKlZ2prpdLreyRM4V2+1N7e4YIwq pIwpQI7IFNxm2zUUHaH6wEgbbd6zWTDf/CznQmAH1rylH8sLIaxpYLTP3tMNNNfb xbQPaovDAk2z2d1zp5fF/YR186pLi/xNWXclOumAVtZJVqPJadTKcU/vVKdGbYgE eR7KYP/HhPR2/xhaV0vlJTtAbzvdL/cD0da3kxGqjQHQzTtgdiGSPJednwARAQAB tCdDaGF0bGlvIFNlY3VyaXR5IDxzZWN1cml0eUBjaGF0bGlvLmNvbT6JAk4EEwEI ADgWIQTSscq17z9Ckbi8NJoKQArJ3nMMbQUCXEuq5gIbAwULCQgHAgYVCgkICwIE FgIDAQIeAQIXgAAKCRAKQArJ3nMMbQPID/9D8Wfj4yEqhgZ3RmM5lqCiMZ0tZE21 +/3W8OWel5P3JPlKDHH+0pWmM+CxVll5HDRth3fBUyMPPo1qOaoPfEbbCncDgtAx Qje/Qdj5YSFecQbmuOjVbbMnOCQxzdKRH7ZEIEaraVhUb16al6SsbxpJUyi6Bpi8 kuR9R6o9MYadp9RJtY6bjtTvNppoJIj1eldtuV6YG9K3M2p3DDtwHSbuXwMo9V2d vPqugP3338Yd5ITLts0JKh9ElFbI+AnuJb+eWRSrvHxWzb/+7RDBdc1jZUCLotEa CwcxRAUB/ND6yYci/arGFU9ofdvOedKUPhC65jH1hFRgQcc0lLzDSytMSah5YEAM sE+L4hbR+ZntT9p2J8yFXv0dYryev53YehGkDLao6G2l8RbhQpmd0hqdms6eLmL1 FQrDuN01HJPrHwHuYk5MTzBYlgPwYdTzgqpBXHz9X87n+ovzPw7KbQ4bbT0q2uaX UfJOZ5+/ShXmn1Zk7oEI3CMOsJsGKKaM+KhuCJlmfx9l/6gWh5++fs4OeHr4vYs2 ukpEoepDN8zNhj+1wrh00oDULxVGQz2zxqb7ny+sA3KsPPLSVDw5NQK+oYTokGdh om3+BaFeGEPWC0AyzY42IKCl/PZAoWK0/DdFvxQu0urbQFPtbHoOWEkQprJBikyL uNyRtcSoS6tmvrkCDQRcS6rmARAAwNab4y2aBePtMKc/Nup+DFitKJmCPDncJpnr bc2u+cAwtzEQgijmba7IKqx9Jab1i1d/63AdBA3w4tBYRxsovkXhs9+cj+OsKaH+ yqWa/rBkQQIuXTfZZ3jfdOpW1y9BY61KfmltD0F5copDC1FTUXZ1NHH4E9EMnYfp +/F/kHt5uF6BdPq0MAWdAJkvw2koXBp+5ZQCaswVbqXUoN/qORg89dIVt5iNHq9b mVt6O0+ErgV6tCDua57kNONOzZSwHf3DwJMuuriJ/AzlajX0tUGyCx7PuWJt1YhE f7Dh1M5IjpIh9hSJunT86i+vgnXtnVzRIMR/mvJV/Nz9kY2vEtDIhema+0OgOUI/ iqVsuHw/byXBm5c2KRbdU2+Jbw652nDpc06J7X3zJSwiyZTKLwBtKTT8/TLb5H7R uTaLtDy+7hy1y/fgadvgiVHg/grE5SXlt3A31BFHcPXl70dGbCJoqTZUF+L5Ed7a 8GjS9Ez4Nf3iEPHZhMW08gpjZJiNtkh3z0qFB6QgHZ84JlHN1lLffhFsOrN/WJMq ZxBh+bOEigJaeAUhKjnXA1ASGemacNwSdYkX3inqLwnDcZJvOA0tj1WMGOQxgmRZ KEeSfEbjZDAcMPoTN6gEZeKhRzMEPItfZPWyHRexMGntCMapNhht/YN00/gKU4jG NG1HvJcAEQEAAYkCNgQYAQgAIBYhBNKxyrXvP0KRuLw0mgpACsnecwxtBQJcS6rm AhsMAAoJEApACsnecwxtN9MQAKNVQygHwsP6HKmGpRamnVLZ9efoY2CWN3HmNzRz cAg5aPManmGVwoTk/b+xlC7ft1gT8x9Q/DvZv5RUqYpXOOyxHy0I6FlohZwTzLdl 5i3rr1HeFZN7PC3UYvpWuqbZUsRh2m22QdBj7VJrib8p0GBZduj2wbZ9UWXkdTd7 inDXc2Q7YuX2fE/geSG+CucOXJqsaxjefGwmpxxfBiyW9R53cgQEYod/fTgt6DJF vYVT3LtpokEgQq4pcrqcTh45kpVvYwbGy7h5t6RdBgfFGpvWHNuvkDiTE43dywhU rpnO8ipy0ke17XzfWrd8hO00WHwsgQzl1/gFj8gPa/70yDIDGyZPrOmMxNJawHzJ KANiK2wjOXolMpsExeT6LbyOaf1kmVNqrtn+oBWJyl4vTOYMElkINJ4MGybEQ+/4 ZEwcmEbft3haUNvl6E5IOKjheq85o2P0NPAFg5im0KgSVeZI5IYkYa0mFCpJOIQ0 2wPzsLYXAVIfzlNi/rgvfMVkezFbk6Hjz9nx8KF9pd4MuP3rLFn6cyAFxpICom/A TRv510Gs70IDJdFidywtPNQ5ehztIlsJ9ZuxXYu1ID58LKK9obX5f8iT8tZ1nw7U BXTNxpJxfV3UyX9C0LoCVFK9pirKCBrnWmOU4Mzqek+ytlrA3JifywNEmDy21o7h J698 =85x0 -----END PGP PUBLIC KEY BLOCK-----
This website is built using latest technogies. Unfortunately your browser doesn't support those. Please update your browser to view this website correctly. Thank you.Update my browser now