We host our dashboard and API backend on Heroku, the renowned platform-as-a-service hosting solution provided by Salesforce. By utilizing Heroku, our data remains safely stored in Amazon Web Services and backed by a team of 24x7x365 engineering support. The virtually limitless scalability of Heroku gives you the peace of mind to know that StatusGator will be there when you need it. In addition, we utilize both Cloudflare and Vercel CDN platforms to bring higher performance and stability.

StatusGator supports 2FA and SAML-based SSO for increased security and credential management. Usernames and passwords are one of the easiest targets for cybercriminals and StatusGator protects your account by reducing the credential surface area with SAML Single Sign On, keeping you compliant. Our two-factor authentication uses one-time passwords (OTP) from a secure authenticator device. We do not support the less secure SMS-based 2FA.

StatusGator is incredibly stable. Over the past 12 months, our uptime is 99.92% with approximately 7 hours of service degradation or downtime over the course of a year. Our status page is hosted entirely separately from the rest of our infrastructure so you can be sure it's accessible even in unlikely event of a StatusGator platform outage.

All StatusGator data is encrypted at rest using AES-256 block-level storage encryption, part of the Heroku platform with keys managed by Amazon Web Services' EBS encryption. Our API, dashboard, and hosted customer status pages, are all only available via TLS/SSL meaning they are only available via HTTPS. Our SSL monitoring is provided by TrackSSL, our own certificate visibility and transparency platform. We use HSTS to prevent protocol-downgrade attacks.

Access to customer data is limited to select few engineers needing to investigate specific production issues. Because StatusGator collects very little customer data – essentially a list of vendors and limited user information such as name and email, the amount of data available in our systems is limited.

Our payment process, Stripe, is the world leader in SaaS subscription payments and they are the only ones who ever see your payment method details. As a PCI Service Provider Level 1, Stripe's security infrastructure is second-to-none and entirely separate from our own. We have no ability to see your specific payment information and only select few StatusGator employees have access to see summary payment details.

StatusGator utilizes two separate industry-standard vulnerability detection platforms to keep track of vulnerable packages and to prevent security vulnerabilities from being deployed. In addition, we maintain a bug bounty program and vulnerability disclosure policy which allows the ethical hacking community to help keep StatusGator data secure.

StatusGator has grown organically for more than 11 years and was proudly profitable from the very early days. We're now backed by TinySeed, a start up accelerator. With TinySeed's investment, we're growing StatusGator's base of rabid fans to include IT and DevOps teams from around the world.