Parklet's Commitment to Trust & Transparency
Trust is a core principle of Parklet and it's this commitment to customer privacy and inspiring trust that directs the decisions we make on a daily basis. Trust is the responsibility of each and every employee and one we take very seriously.
Security Assessments and Compliance
Parklet's physical infrastructure is hosted and managed within Amazon's secure data centers and utilize the Amazon Web Services (AWS) technology. Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Amazon's data center operations have been accredited under:
- ISO 27001
- SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
- PCI Level 1
- FISMA Moderate
We use PCI compliant payment processor Stripe for encrypting and processing credit card payments. Parklet's infrastructure provider is PCI Level 1 compliant.
Secure Data Center
Parklet utilizes ISO 27001 and FISMA certified data centers managed by Amazon. Amazon has many years of experience in designing, constructing, and operating large-scale data centers. This experience has been applied to the AWS platform and infrastructure. AWS data centers are housed in nondescript facilities, and critical facilities have extensive setback and military grade perimeter control berms as well as other natural boundary protection. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff utilizing video surveillance, state of the art intrusion detection systems, and other electronic means. Authorized staff must pass two-factor authentication no fewer than three times to access data center floors. All visitors and contractors are required to present identification and are signed in and continually escorted by authorized staff.
Amazon only provides data center access and information to employees who have a legitimate business need for such privileges. When an employee no longer has a business need for these privileges, his or her access is immediately revoked, even if they continue to be an employee of Amazon or Amazon Web Services. All physical and electronic access to data centers by Amazon employees is logged and audited routinely.
For additional information see: https://aws.amazon.com/security
Data Encryption & Transmission
Data in Transit
All your communication with Parklet is protected in transit using the highest levels of encryption including 256-bit TLS 1.0 encryption. This is the same protection used by banking institutions across the world. Your credit card information is never transmitted to or stored on Parklet.
Data at Rest
Parklet only stores your most sensitive information in an encrypted form using the AES-256-CBC encryption scheme.
We takes steps to protect the privacy of our customers and protect data stored within the platform. Some of the protections inherent to Parklet's products include authentication, access controls, data transport encryption, exclusive use of HTTPS/SSL, and the ability for customers to encrypt stored data. For additional information see: https://www.parklet.co/privacy
Parklet keeps a complete and permanent record of all of changes to your data. You can rest easy knowing that there is an auditable record you can always turn to.
Parklet employs state of the art back-up and firewall technology to ensure that your information is always available, no matter what happens. Our system stores back-ups in multiple secure locations and is updated every day.
Access to Customer Data
Parklet staff does not access or interact with customer data as part of normal operations. There may be cases where Parklet is requested to interact with customer data at the request of the customer for support purposes or where required by law.
We go out of our way to keep your data safe. We regularly review our security policies and adhere to the highest industry standards for protecting our customers. If you would like to know more, feel free to contact us with specific questions.