Security, Scale & Resilience

Enterprise-grade security built for the trust sector. Your data is protected by the same infrastructure that powers Google's own services.

Infrastructure

Plinth is hosted on a multi-cloud serverless architecture, designed for scalability and resilience.

  • Database: Google Firestore, hosted within the EU (europe-west3) — a serverless NoSQL database designed for automatic scalability.
  • Web hosting: Static assets cached and served via Vercel, remaining accessible even if serverless functions fail.
  • Analytics: Cloud Elasticsearch (managed by elastic.co on Google Cloud) for fast, complex queries and reporting.

Encryption & Data Protection

  • All data encrypted in transit and at rest in our Firestore database.
  • All traffic encrypted via TLS. All sites served exclusively over HTTPS.
  • Passwords salted and hashed using a modified version of scrypt.
  • API secrets and third-party keys stored as encrypted environment variables — never checked into code.

Access Control

  • Firestore integrated with Firebase Authentication providing row-level permissions on all data.
  • All API calls to personal data are authenticated. Each organisation manages their own access.
  • Code access restricted to approved team members with mandatory 2FA on GitHub.
  • Full audit logs for all data changes, allowing administrators to revert unintentional modifications.

Testing & Code Quality

  • Annual independent penetration testing by qualified third parties. Attestations available on request.
  • Static analysis, automated QA and security testing, and peer code review before every deployment.
  • New versions deployed to a staging environment first. Any deployment can be rolled back with one click.

Backups & Resilience

  • Daily emergency backups stored in a Google Cloud storage bucket (EU, europe-west3) for 30 days.
  • Point-in-time recovery for the last 7 days — version control and querying of historical data.
  • Backup restoration regularly tested in staging. Achieves 0 RPO and 0 RTO.

Compliance

  • Fully GDPR compliant. Your data is never used to train any AI models.
  • Registered with the ICO. Named board representative for security of the service.
  • Public, product, and professional indemnity insurance maintained.
  • Internal incident management via dedicated Slack channel with immediate full-team awareness.

For further details, see our Privacy Policy and Terms of Service.

Questions about security? Get in touch.