New Feature
How Spirit can keep your community connected during the COVID-19 pandemic

Security at Spirit

We take safeguarding our customer's data very seriously. Here are just a few of the ways, we keep your data secure.
Learn more about Spirit's GDPR commitment
Product Security

Security features built into Spirit to give you stronger control over your data.

Single Sign On

Spirit offers the ability for your users to log on with your own IDP using Single Sign-On (SSO). We support SAML and user provisioning.

Password Security

We require minimum password complexity and passwords are encrypted using a PBKDF function (bcrypt).

Uptime

Spirit maintains 99.7% uptime. You can view our current uptime on our status page.

User Permissions

When users are logged in, Spirit has the capability to assign different permissions to users to restrict access.

Network Security

Our infrastructure security to protect Spirit data from outside forces.

Hosting

Spirit is hosted on Amazon Web Services (us-east-1). Learn more about their highly secure infrastructure here.

Data Backups

We have automated daily backups of all customer data. Stored in a separate availability zone for redundancy purposes.

Encryption

All Spirit endpoints are accessible via SSL only through HTTPS.

Other

Other security features and policies to safeguard your data.

Employees

Employees who deal with data systems are trained on data security regularly. We also require all employees to sign a confidentiality agreement.

PCI & Payment Security

All payments are handled by a third-party payment provider, Stripe. We never hold financial information on our own servers. Information about their security can be found here.

If you think you may have found a security vulnerability. Please contact us at security@getspirit.io