Recycly Infrastructure, Data Security, and GDPR Compliance

Recycly Infrastructure Resilience:

• Recycly uses a highly resilient infrastructure, utilising Kubernetes for multi-server workload distribution across multiple availability zones, and AWS RDS Multi-AZ deployments for customer data.
  
  

• We have systems and tools in place for monitoring and alerting of any infrastructure or application issues (specifically CloudWatch and Prometheus)
  
  

• We utilise infrastructure-as-code and continuous integration to ensure any infrastructure and application changes are tested in our development and testing environments before being rolled out to the production environment.
  
  

• We have documented and tested Disaster Recovery (DR) plans in place

Data Security and Encryption:

• We host customers across multiple AWS regions, based on their location. All customers are hosted on the resilient infrastructure described above, across multiple availability zones.
  
  

• All customer data is encrypted at rest using industry standard AES-256 encryption, using AWS Key Management Service (KMS) for management of encryption keys
  
  

• All customer data is encrypted in transit via industry standard Transport Layer Security (TLS)
  
  

• AWS Data Centres are some of the most secure in the world. AWS publishes comprehensive security information about their data centres, available on this link.
  
  

• In developing our architecture, we have followed the AWS Well-Architected Framework to ensure our solution is Secure, Performant and Resilient

GDPR

• See our customer portal, here.