Hosting security assurance

Digital Garden is a platinum partner of hosting provider Platform.sh. Most of our clients host through this enterprise-grade hosting provider – and we do to.

Here is some detail from Platform.sh on their Security Assurance Plan that gives you and your organisation peace of mind.

Security at Platform.sh

At Platform.sh, security isn’t just a feature – it’s foundational. Our globally distributed, cloud-native platform is built with security best practices baked into every layer, from infrastructure to application delivery.

Enterprise-grade protection

• 24/7 monitoring and incident response: Our Security Operations Centre works around the clock to detect and respond to threats.
• Role-based access control: Internal access is tightly governed, with regular audits and the principle of least privilege.
• End-to-end encryption: TLS and SSH secure data in transit; AES-256 encryption protects data at rest.

Operational resilience

• Regular backups and data recovery: Automatic, region-specific backups with defined RPO and RTO standards.
• Disaster recovery & business continuity: Plans are tested and audited annually to meet SOC 2 and PCI DSS standards.
• Logging and SIEM: Application and system logs are securely stored and monitored to detect anomalies and ensure compliance.

Compliance and certifications

• Certified for SOC 2 Type 2, PCI DSS Level 1, and compliant with GDPR, HIPAA, TX-RAMP, PIPEDA, and more.
• Platform.sh uses EU-approved DPA clauses and Standard Contractual Clauses (SCCs) to ensure lawful data transfers globally.

Built-in defences

• Web Application Firewall (WAF) and IP filtering included with Enterprise and Elite plans.
• Hardened environments: Minimal attack surface, enforced firewall rules, and automated patch management.

Shared responsibility

Security is a partnership. We manage the platform, infrastructure, and updates – you secure your app code, user permissions, and secrets.