Blackbird utilizes enterprise-grade best practices to protect our customers’ data.
Continuous Security Control Monitoring ✅
Blackbird uses Drata’s automation platform to continuously monitor 100+ internal security controls across the organization against the highest possible standards. Automated alerts and evidence collection allows Blackbird to confidently prove its security and compliance posture any day of the year, while fostering a security-first mindset and culture of compliance across the organization.
SOC 2 Type II and SOC 3 ✅
Blackbird works with Sensiba, an industry leading firm for System and Organization Control Reporting (SOC). Blackbird is proud to share that we’ve received a clean SOC 2 Type 2 and SOC 3 attestation reports in 2023 and 2024. This rigorous, independent assessment of our internal security controls serves as validation of our dedication and adherence to the highest standards for security, confidentiality, availability, privacy, and processing integrity.
Hosting Environment and Physical Security ✅
Blackbird is hosted on public cloud infrastructure from Microsoft Azure. Azure maintains high standards of security for their data centers. You can read further about Azure's security here.
Blackbird supports hosting in various cloud regions, at the customer’s option.
Employee Trainings ✅
Security is a company-wide endeavour. All employees and contractors at Blackbird complete an annual security training program and employ best practices when handling customer data.
Penetration Testing and Vulnerability Scanning ✅
Blackbird works with ISSP -Information Systems Security Partners, an industry leading firm to perform recurring network and application layer penetration tests.
Secure Software Development ✅
Blackbird utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.
Data Encryption in Tranzit ✅
Blackbird's data is protected in transit through multiple layers of encryption. All external communications are secured using TLS 1.2/1.3 via HTTPS For database connections. Blackbird utilizes Azure PostgreSQL's built-in SSL/TLS encryption for all data in transit.
Data Encryption at Rest ✅
Blackbird leverages Azure's platform-level encryption mechanisms. Azure PostgreSQL databases are encrypted at rest using Azure's implementation of AES-256 encryption through the Azure Storage Service Encryption (SSE). Blackbird's blob storage implements Azure Storage Service Encryption (SSE) with platform-managed keys by default. All encryption keys are managed through Azure Key Vault, ensuring secure key management and rotation.
PCI and Payment Details ✅
Blackbird uses PCI Compliant Level 1 audited payment processor Stripe for processing credit card payments for our services.
Traffic Monitoring ✅
We implement comprehensive traffic monitoring through our Kubernetes infrastructure. All ingress traffic is monitored and controlled through Kubernetes Ingress controllers. This provides us with: real-time traffic analysis and logging; load balancing and traffic distribution metrics. Anomalies are also detected through Cloudflare's machine learning-based systems that analyze traffic patterns in real-time. The system looks for unusual spikes in traffic, suspicious request patterns, known malicious signatures, and deviations from normal traffic behavior. This includes monitoring for DDoS attacks, bot activity, and other security threats.
Vulnerability Disclosure Program ✅
If you believe you’ve discovered a bug in Blackbird’s security, please get in touch at [email protected]. Our security team promptly investigates all reported issues.