Application Reliability

Multi-Cloud Redundancy

Paperwork is hosted across multiple cloud hosting providers to ensure reliable application uptime and stability.

By distributing risk across multiple cloud hosting providers, we can minimize the possibility of downtime in our systems.

Automated Failover

Our systems are designed to be resilient against failures of one or more of our sub-systems. Our web servers and database servers are configured in redundant groups, allowing for continued service in the event of a failure.

Our systems are monitored at all times, and automatic scripts are able to perform immediate switchovers to redundant systems in the event of an issue.

Daily Back Ups

Back-ups of all databases are completed nightly, both locally to the datacenter where the database is located and to a redundant datacenter in a different geography in the same Data Residency Zone.

All objects stored by Paperwork are placed in immutable storage to prevent data loss, and are also backed up nightly to a different geography in the same Data Residency Zone.


Data Security

In-Transit Encryption

Paperwork serves all content through Transport Layer Security (TLS), the next-generation encryption and authentication protocol, to deliver a secure web experience.

Connections between Paperwork and end-users are always encrypted while in transit using TLS version 1.2 or higher.

At-Rest Encryption

Paperwork’s server-side encryption uses one of the strongest block ciphers available to encrypt our data, 256-bit Advanced Encryption Standard (AES-256).

Paperwork encrypts each stored object with a unique key. As an additional safeguard, the key itself is encrypted with a master key that is rotated regularly.

Compliance Certifications for

Paperwork ensures all of our hosting providers and sub-processors meet strict compliance standards, depending on their role.

Where appropriate, these standards include PCI DSS Level 1, SOC 1 Type II, SOC 2 Type II, and ISO/IEC 27001:2013.

Data Residency

Every Paperwork customer is able to choose from one of our four Data Residency Zones, which determine where your Paperwork data is stored. Data Residency Zones allow you to remain in compliance with data sovereignty laws and regulations in your country.

Learn more about Data Residency >

Platform Security

Web Application Firewall

Paperwork utilizes a web application firewall (WAF) to protect against malicious attacks designed to compromise our web servers. Built on an edge cloud platform, the WAF protects against injection attacks, cross site scripting, HTTP protocol violations, and more. The WAF is continuously updated to address ongoing threats using multiple rulesets.

Inconsistent Activity Detection

Our web platform and APIs are protected by tools that provide predictive, behaviour-based bot detection and mitigation at our network edge.

These tools are designed to prevent irregular activity associated with account takeovers, scraping, and complex application-layer attacks.

DDoS Mitigation

Paperwork is served through a high-bandwidth, globally distributed network that is built to absorb DDoS attacks. This network provides protection against disruptive attacks that may target our infrastructure.

Take the next step

Talk to a member of our sales team today. Experience Paperwork firsthand.