Security

DevDynamics is continuously working on safety improvements to keep your data secure. We understand the importance of security and transparency. We adhere to international data regulation and compliance standards, ensuring data security for our customers at every level.

SOC Compliance

System and Organization Control (SOC) 2 is a widely recognized auditing standard that sets the criteria to manage customer data and protect the privacy of customers. 

An external audit firm has confirmed that DevDynamics adheres to the highest industry standards when it comes to implementing security controls and protecting our customers’ sensitive data.

Data Usage and Storage

Read our to know how we manage and store customer data. Additionally, we establish a Data Processing Agreement that complies with GDPR standards with our clients. We also adhere to the GDPR guidelines of notifying customers about any security incidents. 

To provide our services, we access metadata related to your organization’s activities on GitHub, Jira, Linear, and Azure. These activities include Pull requests, automated test runs, and Git commits. 

While we request authorization to access source code, we do not retain it. We only use the Git metadata accessible through. git directory or Git provider API. We create clone or shallow clones of repositories to extract Git metadata. After processing, we immediately delete the repository. Your code isn’t scanned or stored.

Security Audits

Annual security audits of our practices and application take place in may.

Employees

Our workforce undergoes rigorous training in handling customer data with care. This encompasses encrypting laptop disks, employing a password manager, implementing strong, unique passwords, utilizing two-factor authentication, refraining from storing customer data on personal devices, and recognizing common security threats like phishing attacks

Secure Payments

Any sensitive or credit-related data provided is securely transmitted using Secure Socket Layer (SSL) technology. This data is subsequently encrypted within our Payment gateway providers' database, accessible exclusively to authorized personnel with specific access privileges. These individuals are obligated to maintain the confidentiality of this information. Your private details (credit card information, social security numbers, financial data, etc.) are not retained in our records after a transaction.