Over 60,000 customers across the globe trust us with their data being processed by our products. We back ourselves up with robust data security and privacy practices that are integral to our product engineering and service delivery principles.
Agastya, being a custodian of customers’ data, a multi-fold model of security architecture, robust product delivery, and a highly resilient service platform are the fundamental tenets of its service delivery.
Multi-tiered data security model
End-to-end security in product lifecycle
Always lights-on for your business
We understand the value of data. With our robust system of data safeguards, we allow you to focus on the data rather than on its security
Hosted in dedicated VPCs in a non-promiscuous mode that is further segmented for increased security and manageability.
Routing rules are hardened based on pre-established criteria for various permissible transactions across all resources.
Role-based access through IAM enforces segregation of duties, two-factor authentication, and end-to-end audit trails, ensuring access in accordance with the security context.
AES 256-bit encryption when data is encrypted at rest and HTTPS with TLS 1.2 encryption for data in transit.
Secure administrative tunnel with whitelisted IP addresses for connection to the servers for administrative purposes through Teleport.
Malware and spam protection is applied based on the latest threat signatures and supports real-time scanning and security.
We understand the value of data. With our robust system of data safeguards, we allow you to focus on the data rather than on its security
The Product roadmap is defined and reviewed periodically by the Product Owner. Security fixes are prioritized and bundled in the earliest possible sprint.
Our DevOps sprints are powered by a multi-disciplinary Squad of members, including a Product Owner, Squad Lead, and Quality Assurance.
All changes are tested by the Quality Assurance team, and criteria are established for performing code reviews, web vulnerability assessments, and advanced security tests.
Builds are put through stringent functionality, performance, stability, and UX tests before the build is certified "Good to go."
Source Code is managed centrally with version controls and access restricted based on various teams that are assigned to specific sprints. Records are maintained for code changes and code check-ins and check-outs.
Access to the production environment is restricted to a very limited set of users based on the job roles. Access to the production environment for developers and Quality Assurance team members is restricted based on their job responsibilities.
We follow a blue-green strategy for deploying changes to production environment that allows us to deploy upgrades seamlessly.
The architecture is built with resiliency to ensure the high availability of our product.
All components are deployed in ‘n+1’ mode across multiple availability zones configured in active-active mode behind a load balancing service.
Route users to the best endpoint based on geo-proximity, latency, health, and other considerations.
Automatic distribution of application traffic across multiple availability zones that support high availability, auto-scaling, and robust security.
Near real-time backups are maintained in another AWS Availability Zones. Cloud Snapshots are taken every day and retained for the last seven days.
Multiple Availability Zones are set up and serve customers in real-time, providing seamless DR capability.
Procedures are established for reporting and tracking incidents for timely communication, investigation, and resolution.
Geographically distributed network of proxy servers and their data centers. The goal is to distribute services spatially relative to end-users to provide high availability and high performance.
24x7 monitoring and situation awareness through the detection, containment, and remediation of any suspected or actual security incidents. Tactical rules and data sensors are configured to provide suitable early warnings and alerts.
Proactive capacity monitoring based on conservative thresholds and on-demand capacity expansion capability through our highly elastic hosting partners.
Agastya Hydrogen is a trademark licensed by Agastya, Inc. © Agastya, Inc., 2024
