Some key features of the Fyle platform to keep your data safe
All clients communicate with Fyle’s servers using industry-best practice HTTPS / TLS only.
We “salt” and hash the password using SHA-256. This is a one-way transformation and the original password is never stored on our servers.
We routinely get our services assessed by third-parties that check for vulnerabilities and are happy to provide the latest reports upon request.
Many countries (and states) are rightly adopting high-standards for securing user data. We are GDPR-compliant and ensure you own your own data.
We delete all customer data within 30 days of termination of contract. You can back up your data securely using our REST APIs and open-source tools.
We have multiple data centers and maintain an RPO of 24 hours and RTO of 4 hours.
Critical security features you can configure in your account
Users will have access to only data they need to using RBAC including an auditor role.
Users can authenticate with Fyle using your enterprise’s auth system such as Active Directory (AD) via SAML 2.0.
With these restrictions in place, your account admins will only be able to perform critical actions from within your office network.