PainChek is committed to protecting the data our clients store whilst using our product. We use AWS encryption-at-rest for our RDS database, and ephemeral disk storage encryption for our AWS ECS Fargate application containers. In addition to at-rest encryption, PainChek enforced secure transfer of information using TLS over HTTP (HTTPS). Our backend servers uses the latest AWS CloudFront cipher set for TLS encryption to ensure weak or depreciated protocols and ciphers are disallowed.
To further reduce the risks involved in manual management of encryption; PainChek uses AWS Key Management Service to manage our encryption keys. Keys are auto-rotated.