Guru uses physical, procedural, and technical safeguards to preserve the integrity and security of your data.
Customer data is stored in multi-tenant datastores; we do not have individual datastores for each customer. However strict privacy controls exist in our application code to ensure data privacy. These controls prevent one customer from accessing another customer's data. We have many unit and integration tests in place to ensure these privacy controls work as expected. These tests are run every time our codebase is updated, and even a single test failing will prevent new code from being shipped to production.
When you enter data into Guru, we use secure sockets layer (SSL) technology to encrypt the transmission of your data to our servers. All data is encrypted with AES-256 encryption. All the keys are stored and managed server side. Additionally any native credentials are salted and hashed using bcrypt.