Security Overview of SideSpeak

The following is an overview of the security measures and practices implemented in SideSpeak. Understanding the importance of data security and privacy in today’s digital landscape, we have developed our platform with robust security protocols to ensure the utmost safety and confidence for our users.

1. Architecture and Infrastructure Security:

Our platform is built using the MEN stack (MongoDB, Express.js and Node.js) and integrated with Jitsi Meet for seamless video conferencing. Hosted on Amazon Web Services (AWS), we leverage their secure cloud services infrastructure. This includes network firewalls, encryption in transit with TLS, and data encryption at rest across all services.

2. Database Security with MongoDB:

We employ MongoDB for our database needs, with strict authentication and authorization controls. Data is encrypted both in transit and at rest, and we ensure that our database is isolated from unauthorized access.

3. Secure Application Development:

Our application is developed with a focus on security at every stage. We follow best practices in coding to prevent common vulnerabilities such as Cross-Site Scripting (XSS) and  Injection Attacks. Regular code reviews and vulnerability assessments are part of our development lifecycle.

4. Data Privacy and Compliance:

In compliance with data protection regulations, we have stringent data handling and privacy policies in place. Our platform is designed to ensure that user data is handled securely and with the utmost respect for privacy, including  and compliance with regulations like GDPR. Click to see our Privacy Policy

5. Jitsi Meet for Secure Video Conferencing:

Jitsi Meet, our foundation technology for video conferencing, is known for its strong encryption protocols. We regularly update our platform with the latest Jitsi Meet secure versions to maintain high standards of security. Click to see more Jitsi Security

6. AWS Security Features:

Leveraging AWS’s robust security offerings, we implement features such as Identity and Access Management (IAM), AWS Shield for DDoS protection, and AWS Web Application Firewall (WAF) for enhanced security.

7. Continuous Monitoring and Incident Response:

Our system is monitored continuously for any unusual activity. We have an incident response plan in place to swiftly address and mitigate any potential security incidents.

8. Commitment to Security:

We are committed to maintaining and continually improving our security posture to protect our platform and users against emerging threats.