Klipfolio is continually improving our list of default and customer-controlled features that are meant to protect both our services and customers.
Connection to the Klipfolio service is via secure socket layer/transport layer security (SSL/TLS), ensuring that our customers have a secure connection to their data.
Customer passwords are not accessible by Klipfolio personnel.
Hardware and software configurations are designed to provide secure logical separation of customer data that permits each customer to view only its information.
Multitenant security controls include unique, non-predictable session tokens, sharing rules, and user profiles.
The Klipfolio application architecture has been designed to be scalable and redundant, allowing for fluctuation in demand and expansion of users while greatly reducing the threat of extended down-time. Features of our design include load-balanced networks, pools of application servers, and clustered databases.
All data is backed up using daily and weekly images. Master/slave replication additionally ensures that database backups are hot-swappable. Backups and replications are not transported offsite.
Customers may manage user and group access, editing, and administration rights.
The IP range restrictions feature allows customers to restrict the range of IP addresses from which its users may log in and access data.
