Security & Compliance
Chime takes security and compliance seriously. We work with industry pioneers to ensure that your data is protected 24/7.
Read our Security & Privacy White Paper
CHIME TAKES PRIDE IN BUILDING A POWERFUL AND SECURE PLATFORM
01
Infrastructure
& Application Security
Our products are built around industry-leading best practices for data privacy and information security. Our services are hosted on AWS, a leading cloud infrastructure provider. The AWS Security Platform provides industry-leading security capabilities and services such as network firewalls, encryption in transit with TLS across all services, DDoS mitigation capabilities, data encryption, monitoring/logging, identity management/access controls, and third-party penetration testing.
02
Customer
Data Encryption
We protect you from external threats. Chime secures your business applications through standardized security measures including Web Application Firewalls, Distributed Denial of Service (DDoS) Protections, Vulnerability Scanning, and Third-Party Penetration Testing.
03
24/7
Monitoring and Incident Response
Your data is protected 24/7. Chime has an intact alert system which allows us to monitor for malicious activity, handle security incidents, and support operational processes. We try our best to prevent, detect, and respond to threats.
04
Organizational
Security
We ensure Chime employees are well-trained in security. Security awareness training is provided to all employees upon hire and an ongoing annual basis. Chime uses the principle of least privilege (PoLP) to ensure a user is given the minimum levels of access necessary. We regularly conduct internal audits to ensure PoLP compliance.
Need to report a vulnerability?
If you believe you have found a security vulnerability, please report it here .