PackageX Security

Data confidentiality, integrity and availability are top priorities for Mailroom. We honor our commitment to protecting customer data and privacy with our five information security pillars.

inbound package management software

Mailroom’s Pillars of Security

Mailroom’s enterprise-grade security is held up by five pillars. Each pillar contributes to the use of advanced security technology and controls.

Multi-Tenant Architecture

Mailroom’s database is built on a multi-tenant architecture, with numerous embedded security controls on multiple logical layers and application layers.

Closed Company User Group & Customer Controls Access

Access provisioning is fully controlled by the customer to their tenant. Only administrative roles via the Mailroom dashboard allows control over identity management.

Full Encryption

Mailroom uses cryptographic measures in various use cases including encryption of all internal communication channels as well as encryption of data-at-rest and in-transit.

Compliance & Privacy

Mailroom maintains compliance with the General Data Protection Regulation (GDPR) guidelines as outlined for the protection of personal data.

Availability

Mailroom provides 99.9% availability and uptime to customers as part of its commercial subscription agreement contract.

Mailroom Security Overview

We have built our platform to protect your personal and company data by using best practices for highly available, scalable, and secure cloud applications.

Physical Security

All our customer data is very important to us and we take serious measures to ensure no physical access is granted without authorization.

Network Security

We adopt various best practices to secure the network layer. All connections established using Mailroom are secure and we use smart detection technologies to prevent unauthorized access.

Application Security

We leverage industry-leading benchmarks to make the application layer secure for our customers. These practices ensure our users can use Mailroom in a secure manner.

All instances are authenticated, authorized, and fully encrypted. Read more about what we use to secure the application layer below

Authentication

Mailroom uses AWS Cognito as a central authentication server which provides scalable and secure user-directory and authentication flows for external interfaces

Authorization

Mailroom uses a role-based access control (RBAC) authorization framework to ensure data and information can be accessed or operated on only by authorized users within an organization.

Data Storage

We go to great lengths to secure all customer-related data and store it in a safe manner.

Read more about how we make data storage secure and how customer data is stored, retrieved, processed, and analyzed.

Database

All operational data is structured into a relational database, the main data storage of Mailroom. RDS instances are provisioned for multi-AZ configuration for data availability and redundancy.

Object Storage

Mailroom stores binary and image data in an object storage in AWS S3 cloud. All files stored in AWS S3 are encrypted using AWS KMS which is an encryption key management service.

Analytical Storage

Analytical stores in the form of Google Big-Query databases collect non PII information from application & operational databases.Cloud functions with IP whitelisting & encryptions can only access databases for data transfers & aggregations.

Search Indexes

Elasticsearch instances are locked and are only accessible from authenticated Mailroom API services within the Mailroom infrastructure. In no scenario is data inside Elasticsearch exposed directly through API or any other mechanism.

Protecting Your Privacy

We are committed to protecting your privacy rights. We have put measures in place to handle personal information in compliance with GDPR and CCPA.

Compliance & Certifications

Compliance is upheld as one of Mailroom’s key pillars to ensure product integrity is provided to its clients. We comply with the highest standards to make our platform secure for our clients.
PackageX pattern

Reliable System Availability

Mailroom only uses certified data center service providers and offers full transparency into system status and performance.

Uptime and Availability

Mailroom offers transparency into real-time and historical platform status and a 99.9% uptime commitment to our customers.

Continuous Data Backup

Each storage service is configured for redundant storage in different availability zones within the same data center as backup.