Security at Qubitro

Qubitro is trusted by thousands of developers for building & operating connected experiences.

Multi-factor Authentication

Qubitro allows users to enable Multi-factor authentication (MFA) on their account. MFA adds an additional layer of security to your user account, by requiring a second factor to verify your user identity.

DDoS Protection

Qubitro combats Distributed Denial of Service attacks in several ways to mitigate resource abuse and prevent runaway bills.

In addition to protection at the CDN level via Cloudflare, built-in rate limits prevent surprise bills.

Data Encryption

All customer data is encrypted at rest with AES-256 and in transit via TLS.

Sensitive information like access tokens and keys are encrypted at the application level before they are stored in the database.

Role-Based Access Control

Members of organizations in Qubitro can be granted access to specific resources.

Read more about fine-grained access controls including Read-Only and Billing-Only access.

Backups

All customer and device data are backed up every day.

Point-in-Time Recovery allows restoring the database to any point in time. Customers on the Enterprise plan can customize storage per project as an add-on.

Payment Processing

Qubitro uses Stripe to process payments and does not store personal credit card information for any of our customers.

Stripe is a certified PCI Service Provider Level 1, which is the highest level of certification in the payments industry.

Vulnerability Management

Qubitro works with industry experts to conduct regular penetration tests.

In addition to internal security reviews, we use various tools to scan our code for vulnerabilities including GitHub, and Snyk.