Zipline is built on Microsoft Azure using security best practices.
Zipline is dedicated to maintaining a high level of security compliance and is committed to handling Personally Identifiable Information (PII) in accordance with the Australian Privacy Principles. Zipline ensures that all sensitive information input into the platform is stored within its Australian servers, encrypted both in transit and at rest, and appropriate additional security measures are in place to ensure that data and the platform are secure. Zipline conducts annual penetration tests and does not use any confidential data or documents for retraining or testing purposes.
β
The system is designed to use Azure load balancing, firewalls and auto scaling to provide security, redundancy and scalability.
Our internal network is configured not to be accessible from the Internet except for the allowed endpoints. This is done using the built-in Microsoft Azure tools.
On the application side, we monitor the relevant channels for security updates. Our deployment process allows us to roll out security patches in under 24 hours.
We use SSL(TLS 1.3, 256-bit key) end-to-end. HTTP requests are forced to HTTPS (no plain HTTP allowed).