Security

We enforce permission checks for any actions taken within the app. Permissions can be set to include/exclude app settings, billing, data changes and deletion privileges.

We aim for an uptime of 99.9% or higher. You can view our past month statistics at https://status.waitlyst.co.

We enforce a password complexity standard and credentials are stored using PBKDF2 (bycrypt) algorithm.

Waitlyst services and data are hosted and powered by Amazon Web Services (AWS) facilities in the USA and EU (London)

Waitlyst was built with disaster recovery in mind, our app is spread across multiple servers so if one them goes down your service will be unaffected.

On an application level we track all audit logs and store them using Amazon’s S3 and on a database level your data is regularly backed up on a Postgres database using Amazon’s Relational Database Service (RDS)

We use strong cipher suites on our SSL/TLS connections to any of our application and API endpoints. Your data is encrypted at rest using an industry-standard AES-256 encryption algorithm.

We enforce permission checks for any actions taken within the app. Permissions can be set to include/exclude app settings, billing, data changes and deletion privileges.

We’re completely PCI compliant, all of our payments are processed through Stripe. You can view their security setup and PCI compliance by heading to their security page