Security

Something we haven't covered? Email us and we'll get back to you!

Marvel takes the security and privacy of the data entrusted to us very seriously. We are constantly monitoring and improving Marvel to meet the growing challenges of modern computing. Every person using our service expects their data to be secure and confidential, and we have gone to extensive measures to ensure it remains so. As a rule we don't like to expose too much information about our security practices; however we understand that security is very important to our customers, so we decided to share the following information. We hope you find it useful.
Discovered a security issue?
If you believe you've discovered a bug or vulnerability that presents a security issue, please don't hesitate to get in touch with our security team directly by emailing security@marvelapp.com.
Communication
All user data is transported securely, as all traffic is encrypted in transit via SSL. Encrypting data in transit protects it from unauthorised snooping, modification, and man-in-the-middle attacks. We use 256-bit SSL/TLS.1.2 encryption, utilising both the ECDSA and RSA algorithms.
Credit Cards
Marvel does not store any credit card information. We have partnered with Stripe for credit card processing. They power online transactions for thousands of business and SaaS platforms and comply with PCI standards in the storage and handling of credit card information.
Data Centre Security
Our hosting environment is fully-redundant with disaster recovery procedures. Our cloud hosting providers maintain multiple certifications for its data centers, including ISO 27001 compliance, PCI certification, and SOC. For more information about their certification and compliance, please visit the Google Cloud platform security and compliance website and the Amazon AWS security website.
Questions
If you have any security questions or if you believe you have found a security vulnerability please don’t hesitate to contact our security team at security@marvelapp.com.