Security
How we protect your data and systems
Last Updated: February 4, 2026
Encryption
TLS 1.3 in transit, AES-256 at rest
ConnectWise SOC
24/7 Security Operations Center
24/7 Monitoring
Continuous threat detection
Access Controls
MFA and least privilege
Data Protection
Encryption
- TLS 1.3 for all data in transit
- AES-256 encryption at rest
- HSM-backed key management
- Encrypted backups
Data Isolation
- Tenant isolation architecture
- Separate data storage per customer
- Secure data deletion on termination
- 30-day export window
Infrastructure
Data Centers
Tier III+ data center facilities
24/7 physical security
Biometric access controls
Redundant power & cooling
Network Security
Enterprise firewalls
IDS/IPS protection
DDoS mitigation
Web application firewall
Access Controls
MFA Required
For all staff and available for customers
Role-Based Access
Least privilege principle
Audit Logging
All access tracked and monitored
Security Operations
24/7 Monitoring
Security Operations Center with real-time threat detection
Vulnerability Management
Regular assessments and annual third-party penetration testing
Incident Response
Documented procedures with regular testing and drills
Employee Security
Background checks for all employees
Security awareness training
Annual security refreshers
Phishing simulations
Report a Vulnerability
Found a security issue? We appreciate responsible disclosure. Please email us with details and we'll respond promptly.
legal@bayfront.cloudContact
Security questions or inquiries:
legal@bayfront.cloud