Keeping the cloud secure
Authentication - SAML and SSO
All plans support SSO via Google and GitHub. On the enterprise plan Favro offers full support for SAML based authentication. We also support third party authentication services OneLogin and Okta via SAML. Favro automatically disables SAML accounts with help from the SCIM protocol. Two factor authentication is available for all Favro password accounts.
Encryption - at rest and in transit
Your data is safe. We encrypt it in transit via https and at rest on the servers in the cloud.
Data in CityCloud, Frankfurt
Frankfurt was chosen as the lowest common denominator policy for corporations and governments approval globally. CityCloud hosts the cloud servers and is our trusted partner. They are certified for ISO 9001, 14001, 22301, 27001, 27018 and harbour companies like Favro as well as financial institutions. Your data is stored in MongoDB and encrypted at rest. Encrypted backups are performed continuously to at least two locations in Sweden with point in time recovery.
People and access
Only a limited number and certified staff within Favro have access to the application cloud where Favro is stored. The network used to access the cloud servers are separated from the rest of the staff. Favro continuously monitors the health, security and performance of the cloud.