Security & Compliance
Chime takes security and compliance seriously. We work with industry pioneers to ensure that your data is protected 24/7.
Chime prides itself in building a powerful and data-secure platform.
Infrastructure Security
Our products are built around industry-leading best practices for data privacy and information security. Our service is hosted on a leading cloud infrastructure provider (AWS).
Application Security
We protect you from external threats. Chime secures your business applications through standardized security measures such as Web Application Firewall, Distributed Denial of Service (DDoS) Protections, Vulnerability Scanning, and Third-party Penetration Testing.
Customer Data Encryption
Your data is stored using AES-256 encryption. And all sensitive interactions with Chime (e.g. API calls, authenticated sessions, etc.) are encrypted in transit with TLS version 1.2, or 1.3 and 2,048 bit keys or better.
24/7 Monitoring and Incident Response
Your data is protected 24/7. Chime has metrics and alerts that monitor malicious activity, handle security incidents, and support operational processes. This allows us to prevent, detect, and respond to threats.
Organizational Security
We ensure Chime employees are well trained in security, security awareness training is offered to all employees upon hire, and on an annual basis. Quarterly access reviews are completed every quarter by a third-party security company.
Downloadable Reports
Check out these documents and reports to learn more about HubSpot’s data privacy, security, and control.
How to report a vulnerability?
If you believe you found a security vulnerability, please report it here