Is KEY ESG software secured?
The short answer is yes, KEY ESG software follows cybersecurity best practices to keep your data secured. KEY ESG uses encryption at multiple layers in the platform, where possible we leverage managed services which provide high levels of security using their default security controls. Traffic in-transit is secured with HTTPS. Requests are encrypted between the customer and an application load balancer, which will decrypt the request and forward it onto our application servers which are hosted in a private virtual cloud network in AWS. Most of the data collected by the application is stored in Azure Database for PostgreSQL. In-transit traffic between our application servers and Azure is secured with SSL/TLS and the data itself is encrypted at-rest which also includes backups and temporary files created when running queries. We also store uploaded files inside of AWS S3 and make use of server side encryption with S3-managed keys.