Description

Wolkvox applications implement encryption in transit and at rest as a fundamental part of their security strategy, following industry-recognized standards. To ensure the confidentiality, integrity, and authenticity of data, advanced encryption protocols are used for both transmission and storage. In collaboration with Google Cloud Platform (GCP), Wolkvox ensures that all information is protected against unauthorized access, leaks, or tampering, complying with regulations such as ISO 27001, GDPR, and PCI DSS.

Features

Encryption in Transit

• Secure Protocols: All communications between Wolkvox clients, servers, and services are conducted via HTTPS with TLS 1.2 or higher, ensuring that transmitted data is encrypted and protected against interception.
• Digital Certificates: Use of valid and up-to-date SSL/TLS certificates to authenticate connections and prevent attacks like "man-in-the-middle."
• Cloud Protection: GCP automatically encrypts traffic between internal and external services, using TLS for the transport layer and ensuring data never travels in plaintext.

Encryption at Rest

• AES-256 Standard: Data stored in databases, disks, and backups is encrypted using AES-256, one of the most robust algorithms available.
• Key Management: Encryption keys are managed through GCP’s specialized services, such as Cloud Key Management Service (KMS), allowing strict control and auditing of their use.
• Default Encryption: Google Cloud applies automatic encryption to all data at rest, including information stored in databases, files, and backups.