Security at Tekmetric

You can trust Tekmetric to keep your data safe.

soc 2 compliant

Tekmetric adheres to the SOC 2 compliance framework set by the American Institute of CPAs, ensuring stringent management of customer data. Through annual testing and adherence to Security, Availability & Confidentiality trust service criteria outlined in SOC 2 compliance framework. Tekmetric ensures secure data management, aligning with industry best practices. Independent third-party audits validate and certify our commitment to maintaining SOC 2 compliance, designed to safeguard and meet your organization's compliance needs.

Learn more about how Tekmetric is dedicated to keeping our customer data safe.

payment card

data security

Tekmetric retains only the data necessary to provide you and your customers with an exceptional experience. Access is limited to only those with a legitimate business need and granted based on the principle of least privilege.

All customer data, in addition to S3 buckets, in encrypted at rest. Sensitive collections and tables also use row-level encryption. This means the data is encrypted even before it hits the database so that neither physical access, nor logical access to the database, is enough to read the most sensitive information.

Tekmetric uses TLS 1.2 or higher everywhere data is transmitted over potentially insecure networks. We also use features such as HSTS (HTTP Strict Transport Security) to maximize the security of our data in transit. Server TLS keys and certificates are managed by AWS and deployed via Application Load Balancers.

Payment Card Industry Data Security Standards (PCI DSS)

Tekmetric partners with Stripe to provide a hosted payment field for handling all payment card data. The cardholder enters all sensitive payment information in a payment field that originates directly from Stripe’s PCI DSS–validated servers.

payment card industry data security standards
payment card

Encrypted, in transit and at rest

All customer data, in addition to S3 buckets, are encrypted at rest. Sensitive collections and tables also use row-level encryption.

This means the data is encrypted even before it hits the database so that neither physical access, nor logical access to the database, is enough to read the most sensitive information.

Tekmetric uses TLS 1.2 or higher everywhere data is transmitted over potentially insecure networks. We also use features such as HSTS (HTTP Strict Transport Security) to maximize the security of our data in transit. Server TLS keys and certificates are managed by AWS and deployed via Application Load Balancers.

Because your data isn’t stored on a computer at your shop, you don’t need to manage a server. And you can access your data securely from anywhere. And don't forget, as our customer, you hold ownership over that data while it is securely maintained and stored by Tekmetric.

We Take Security Seriously

Tekmetric knows an educated team is key to keeping your data safe.
Integration icon
Security Training
Tekmetric provides continuous comprehensive security
training to all employees.
Integration icon
Endpoint protection
All corporate devices are centrally managed and are equipped with mobile device management software and anti-malware protection.
Integration icon
Continuous Improvement
Our controls are iterative, continuously maturing to improve effectiveness, increase auditability, and decrease friction.
Integration icon
Secure Development Process
Tekmetric implements a secure Software Development process to ensure our platform meets customer expectations during production and beyond. Our platform is regularly Pen tested to verify the security of your data as well.

Now See Why We’re the Best.