Fanweave Security
Transparent and secure
We recognise that understanding and protecting our digital footprint and impact is a vital need in today’s data-sensitive era, and transparency is one of our most important company values.
That’s why we’re providing you with a clear breakdown of Fanweave’s mechanism, surrounding your information.
We’ve carefully considered the phrases and words used to communicate our privacy policies and terms and conditions.
We seek legal consultancy and advice on the smallest form of data we obtain and observe full disclosure when asking Fanweave users for any information through toggle switches and verification checkboxes.
Our development team
We’re also working with Conovo Technologies – an award-winning software development company specialising in research-led, human-centred custom software development – on the development of the Fanweave platform.
Conovo are equally as passionate as us about transparency in security, data storage and privacy.
Check out Conovo’s impressive app and platform Portfolio, which includes work for a wide range of customers – from a price-matching grocery app & to a voice recording communication app that’s making waves!
“A great team with full-stack developers (which) reduced the time and test efforts for us.” – CEO, Let’s Sync
Protecting your data
Data regulation and security
Data regulation is at the core of our customer satisfaction strategy. Together, we ensure all feasible means to protect sensitive client information through a highly-secure database operational on MongoDB, which is backed by the Amazon Web Services.
Data security is enabled through encryption provided by tools including CDN, SSL certificate, and Nginx security headers alongside weekly data backups that can fortify Fanweave against unwanted security threats and breaches.
We go beyond preventative measures and brace our digital presence for unpredictable impacts. If a breach is able to penetrate our security barriers, a pre-designed instant analysis and mitigation plan will be launched to optimise and repair the website alongside minimising relevant damage.
Permissions and deactivating accounts
By allowing users to opt in and opt out of our mailing list, we give them control over their communications, and regulation of the email notifications they get from us.
We believe in actively regulating your information based on your account status. As long as an account is up and running, all the information and triggers will be collected, explored, and safeguarded. When an account is deactivated or deleted, the only remaining data that will be retained will be based on user permissions.
Other security measures
Stopping cyber attacks
Admin accounts play a strong role in creating an impenetrable digital wall. Admins with ideal authentication modules act as a preferable shield against a large variety of attacks. We also regularly scan our website and platform for data breaches.
GDPR compliance
We allow all users to access all the data we collect as per GDPR’s guidelines. We also only use GDPR-compliant third-party mediums and services. Lastly, we anonymise user information and run regular GDPR-compliance assessments.
Terms & Conditions
All policies practised by Fanweave are available for the users on our website. We have made our terms and conditions, privacy policy and cookies policy accessible to the common public, therefore making our approach fully transparent.
Consumer rights
To preserve and protect consumer rights, we provide the user with complete authority over their data; to prevent any malicious usage, the users possess the right to de-identify their information or to delete it permanently if they wish.
Storing and accessing data
Storing client and consumer data
We save Fanweave data on three different entities (firebase, fingerprint and Conovo’s internal database). All three platforms also store data on a Cloud platform, providing another security layer. Without authorised credentials, access is impossible. Credentials are secured and only Fanweave personnel and Senior Conovo staff have access.
Accessing client and consumer data
We access data through APIs. We’ve also added IBM’s JWT Authorisation layer, which can only be accessed via a secure-generated token. Data that is available via APIs is based on permissions assigned to the particular user.
