Chisel is hosted on Amazon Web Services, providing end-to-end security and privacy features built-in.
All user passwords are hashed with a PBKDF2-based robust hashing algorithm and individual salts per password.
The industry-standard Transport Layer Security (TLS) is implemented in all communication between Chisel servers and the client browser for enhanced security.
All payments are processed through our partner Stripe. We do not store any credit card information or related personal information on our servers.
The architecture of Chisel enables business continuity, daily backups, and disaster recovery strategies for resuming operations in the case of inevitable disruptions.
Access to data within the Chisel application is governed by role-based access controls (RBAC). Chisel has 2 major permission levels for users (maker with admin access, contributor with limited access).
Production environment is logically separated from the testing and staging environments. No Service Data is used in our development or test environments.