FreePas Logo
FreePasFreePas Events LLC
Back to Home

Your Security is Our Priority

FreePas employs industry-leading security measures to protect your data. We're committed to maintaining the highest standards of security, privacy, and compliance.

256-bit
AES Encryption
99.99%
Uptime SLA
SOC 2
Type II Certified
24/7
Security Monitoring

Enterprise-Grade Security Features

We implement multiple layers of security to ensure your event data remains protected at all times

End-to-End Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption

SOC 2 Type II Compliant

Annual third-party audits ensure we meet the highest security standards

Multi-Factor Authentication

Protect accounts with TOTP-based 2FA and hardware security key support

Secure Infrastructure

Hosted on AWS with VPC isolation, WAF protection, and DDoS mitigation

Data Backup & Recovery

Automated daily backups with point-in-time recovery and geo-redundancy

Privacy by Design

GDPR and CCPA compliant with data minimization and purpose limitation

Certifications & Compliance

FreePas meets and exceeds industry standards for security and compliance

Verified

SOC 2 Type II

Service Organization Control audit for security, availability, and confidentiality

Verified

ISO 27001

International standard for information security management systems

Verified

GDPR Compliant

EU General Data Protection Regulation compliance

Verified

CCPA Compliant

California Consumer Privacy Act compliance

Verified

PCI DSS Level 1

Payment Card Industry Data Security Standard

Verified

HIPAA Ready

Health Insurance Portability and Accountability Act readiness

Comprehensive Security Practices

Our multi-layered approach to security covers every aspect of the platform

Data Protection

  • AES-256 encryption at rest
  • TLS 1.3 encryption in transit
  • Encrypted database backups
  • Secure key management (AWS KMS)
  • Data isolation per organization
  • Automatic data purging policies

Access Control

  • Role-based access control (RBAC)
  • Single Sign-On (SSO) support
  • Multi-factor authentication
  • Session management & timeout
  • IP allowlisting available
  • Audit logs for all actions

Infrastructure Security

  • AWS Virtual Private Cloud (VPC)
  • Web Application Firewall (WAF)
  • DDoS protection
  • Regular security patching
  • Container security scanning
  • Network segmentation

Application Security

  • OWASP Top 10 protection
  • SQL injection prevention
  • XSS protection
  • CSRF tokens
  • Rate limiting
  • Input validation & sanitization

Monitoring & Response

  • 24/7 security monitoring
  • Intrusion detection system
  • Automated threat detection
  • Incident response team
  • Security event logging
  • Real-time alerting

Compliance & Auditing

  • Annual security audits
  • Penetration testing
  • Vulnerability scanning
  • Compliance reporting
  • Security training for staff
  • Vendor security assessments

Secure Data Centers

Your data is stored in world-class AWS data centers with physical and digital security

US East (Virginia)

Primary data center with automatic failover

US West (Oregon)

Secondary data center for redundancy

Global CDN

CloudFront CDN for fast, secure content delivery

Report a Security Issue

Found a security vulnerability? We appreciate responsible disclosure.

Please report security issues to:

security@freepas.com

We'll respond within 24 hours and work with you to understand and address the issue promptly.

Privacy PolicyTerms of ServiceGDPRCCPASecurity WhitepaperCompliance