Security Policy

Last Modified: April 22, 2023

As America's Social Casino, we put security at the center of everything we do.

‍‍

‍

Governance

We enforce a comprehensive set of security policies, standards and guidelines which include but are not limited to:

‍

Disaster Recovery Plan
Acceptable Use
Terms of Use
Privacy Policy
Data Breach Response
Social Engineering Awareness Policy
Risk Management Policy
Incident Response Plan

‍

Personnel Management

All employees undergo a security awareness training and comprehensive background screening which includes a criminal record check. Additionally, all employees are required to sign a confidentiality agreement if they gain access to confidential information.

‍

Security Monitoring

All of our systems are monitored 24/7 by dedicated security personnel, incidents are responded to immediately and threats are identified proactively.

‍

Third-Party Vendor Risk Assessment

All third party vendors and solutions processing our data are comprehensively evaluated, risks are identified and a remediation plan is defined and followed through.

‍

Certified Security Compliance

We host all our data on secure dedicated AWS cloud environment which complies with PCI-DSS, SOC 2, ISO 27001 among other security and privacy certifications. We follow the rules and guidelines of various privacy regulations such as GDPR and CCPA. Please refer to our privacy policy for more information.

‍

Data and System Security

All data is encrypted at-rest using FIPS-compliant AES-256-GCM protocol and encrypted in-transit TLS 1.2 and 1.3, codebase undergoes continuous vulnerability scanning