Nevercode Security Statement

Security is a key concern at Nevercode and we make every effort to ensure that our infrastructure is safe and your code is protected from unauthorized access.

Infrastructure

Your applications’ builds take place in virtualized environments. At the end of each build, the virtual environment is erased and rebuilt using a snapshot that has no knowledge of your app’s source code. All passwords, private keys and signing certificates you upload are stored in our databases in an encrypted form.

Web-facing components of Nevercode are hosted by Amazon Web Services (AWS). AWS have been audited by independent third parties and have made available their compliance reports. You can find these and learn more about AWS security measures at https://aws.amazon.com/security/.

Our builder VMs run on Mac Minis provided by Mac Mini Vault. You can find information about their security systems at http://www.macminivault.com/datacenter/.

Financial information

We use Recurly and Braintree as our payment processors and do not store any credit card data. Recurly and Braintree are PCI-DSS Level 1 compliant - read more about their security at https://recurly.com/security/ and https://www.braintreepayments.com/developers/security.

Additional information

If you require any additional information regarding Nevercode's security policies, please get in touch with us via our contact page.

Please note that we reserve the right to change our infrastructure and third-party services at any time.

Version 2.0, Sep 2, 2016