Security

Trust & Security

Resonant’s your partner in security, so you can coach with peace of mind.
Get StartedContact Us
Engineers assembling software components

Security first, not an afterthought

Resonant was architected from the beginning with a strong privacy and security foundation, and is regularly tested and audited by some of the best in the industry. We didn’t bolt on security stuff when it became important - it’s always been important.

Your clients trust you, so that’s why you use Resonant. We hold ourselves to an incredibly high standard, and take great care to protect your data, both from others as well as data loss. We’re honored to be your partner in keeping your coaching business secure, and work hard to maintain that trust.

The secure way to run your business

Dashboard mockup

Built in security

Security is our top priority. The purpose of our security processes is to prevent anyone but you from being able to access your information. Using a “defense in depth” approach, we have measures in place both technically and process-wise to keep your data safe.

We use automated security testing as part of our development process, and our code is informed by industry best practices such as the OWASP Top Ten. We also regularly contract an independent firm to perform penetration testing.

Privacy

We take privacy and confidentiality very seriously — it's one of the core principles of the platform. Your client data is yours; we never sell, rent, or monetize your data. It’s that simple.

We also support one-click deletion of a client’s data, if a client requests it of you. This makes it easy for you to comply with your regulatory requirements.

You can read more about our approach to privacy in our Privacy Policy.
Dashboard mockup
Dashboard mockup

Reliability

We’ve worked hard to ensure that Resonant is reliable and accessible. If a component were to fail, our geographically distributed, self-healing infrastructure automatically replaces it with a new one, without human involvement. If a server goes down, the chances are low that you would notice. If an issue is detected that can’t be fixed automatically, Resonant engineers are paged immediately and work to resolve the issue as quickly as possible.

We maintain continuous, encrypted backups of Resonant to make sure we can get back online quickly in the event of a disaster. Crucially, we monitor and test these backups regularly. 

How we earn your trust

Safe & Secure

Data is stored in ISO 27001-certified and SOC 1 + 2 accredited data centers. We have strict access controls (including multi-factor authentication), auditing and alerting in place.

Data Encryption

All data is encrypted at rest with AES-256, and in transit with TLS 1.3. Resonant's infrastructure is designed with layers of protection at each step.

Thoroughly Tested

We maintain nearly a thousand unit tests that run with every change we make, to ensure that new features don’t interfere with your existing experience.

PCI Compliance

Resonant is fully PCI DSS compliant through our payments processor, Stripe. By using Resonant to charge your clients, you will be PCI DSS compliant as well.

Continuous Security

Every change we make to the Resonant codebase must pass our automated security testing suite. We regularly work with independent firms to conduct penetration testing and security assessments.

Resilient

Continuous, geographically redundant, encrypted backups remove single points of failure. We monitor and regularly test our backups.

We'd love to hear from you

Contact Us