CheckinPigeon takes the security of your data seriously. Here is an overview of our current security practices.
Infrastructure
Our application and database are hosted on a dedicated VPS in Falkenstein, Germany, European Union (Hetzner). File storage uses Cloudflare R2 with data stored in the European Union.
Data in Transit
All connections to CheckinPigeon are encrypted using TLS. Data transmitted between your browser, the Slack platform, and our servers is encrypted in transit.
Data at Rest
Sensitive credentials such as Slack authentication tokens are encrypted at the application level. Database connections are encrypted.
Access Controls
Access to production systems is restricted and protected. Database ports are not exposed publicly.
Backups
Regular automated backups are performed and stored securely.
Dependency Management
We regularly update dependencies and apply security patches to maintain a secure application environment.
Responsible Disclosure
If you discover a security vulnerability, please report it to support@checkinpigeon.com. We will acknowledge your report and work to resolve confirmed issues promptly.
Contact
For security-related questions: support@checkinpigeon.com