Securing Your Data with MangoMap

MangoMap takes the security of your data very seriously, employing reputable third-party vendors and hosting partners to furnish the essential hardware, software, networking, and storage resources crucial for delivering our services. While we retain ownership of the code, databases, and the service rights, you hold all rights to your user data.

Your data is instantly recorded on multiple disks, backed up daily, and housed in various locations to ensure robust data integrity and availability. User data uploaded to our service is hosted on servers engineered to eliminate bottlenecks and failure points, ensuring smooth operation at all times. Rest assured, your data remains untouched by MangoMap, its staff, or representatives, and is not shared with any third parties, except as described in our Privacy Policy.

Leveraging Amazon Web Services (AWS)

We ingest and securely store your data on our servers using Amazon Web Services (AWS) for data storage, benefiting from Amazon’s stringent security and environmental controls. Within AWS, we utilize RDS Postgres (us-east region) with AES-256 block-level storage encryption both in transit and at rest to ensure the utmost security.

Physical and System Security

Our data centers are well-guarded with limited access only to Amazon AWS technicians. Security measures include:

• Biometric scanning for controlled data center access

• Surveillance cameras at all data center locations

• 24/7 onsite staff to deter unauthorized entry

• Unmarked facilities to maintain a low profile

• Independent audits of physical security measures

The system security is further bolstered with:

• Hardened, patched OS for system installation

• Regular system patching by Amazon AWS to counter exploits

• Dedicated firewall, VPN services, and intrusion detection devices to thwart unauthorized access

• Amazon AWS managed backup solutions for data protection

Operational Security

We adhere to ISO 27001:2013-based policies and procedures, with our systems access logged and tracked for auditing purposes. Our change-management procedures are fully documented, and we have independently audited disaster recovery and business continuity plans in place.

Internal Security Practices

At Mango, we maintain stringent key management policies:

• Master access keys are not distributed

• Access keys are never stored in version control systems or as plaintext

• Individual access keys are generated per employee for developer-only access

Our workstations are secured with encryption for data storage, anti-malware, and antivirus software. Client data is always anonymized for development purposes, and all Mango employees are well-versed in best practice security standards with granular role access to resources.

Employee Access

MangoMap ensures employee awareness on security standards by instructing all its employees on best practice security standards and granting them granular role access to resources. Employee access to private repositories of user data is tightly controlled and only granted with consent from an authorized account holder for technical support purposes.

Data Transfer

We ensure that all server requests to Mango are encrypted via SSL (secure socket layer) with a 256-bit encryption validated by GeoTrust.

Vulnerability Disclosure

Mango GIS values a collaborative approach to security. While we don't have a bounty bug program, we highly appreciate the efforts of security researchers. We encourage responsible disclosure of any potential security issues, ensuring a safer environment for all our users.

Disaster Recovery

MangoMap conducts daily backups of all data, a practice that serves as a robust contingency measure ensuring a recent backup is always on hand in the event of unexpected data loss. The backup data is securely housed across multiple locations, a strategy designed to fortify security and guarantee data availability, even in the unlikely scenario where one of the storage sites encounters an issue. Our servers, the custodians of your data, are engineered using advanced techniques to eradicate potential bottlenecks and failure points, thereby facilitating seamless data retrieval and backup operations. Beyond the daily data backups, we maintain a full replica of the server, inclusive of the operating system and all data, ready to restore normalcy swiftly in the rare event of a critical server failure.

In Case of Data Loss or Security Breach

In the unlikely event of data loss or a potential security breach, we will contact you as soon as possible, keeping you informed in real-time as we assess and address the situation to secure and recover your data. A comprehensive incident report will be provided should any incidents occur.

Policy Updates

We may update this policy periodically to reflect any significant changes. You will be notified via the primary email address specified in your Mango primary account holder account or through a prominent notice on our site. For our EU-based customers, find more information about our GDPR compliance here.