Security at Dishpad

We take the security of your data seriously. Here's how we protect your restaurant and your guests.

End-to-End Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256. Payment data is handled by PCI-compliant processors.

Secure Infrastructure

Hosted on enterprise-grade cloud infrastructure with automated backups, failover, and DDoS protection.

Continuous Monitoring

24/7 monitoring and alerting with automated threat detection and incident response procedures.

Compliance

We comply with GDPR, PCI DSS, and follow OWASP best practices for application security.

Certifications & Compliance

We follow industry-leading standards and frameworks to ensure your data is protected.

GDPR Compliant

PCI DSS Level 1 (via Stripe)

SOC 2 Type II (in progress)

OWASP Top 10 Compliant

Data Centers

Your data is hosted in ISO 27001 certified data centers in the EU (Frankfurt, Germany) with automated failover, encrypted backups, and physical access controls.

Responsible Disclosure

Found a vulnerability? We appreciate responsible disclosure and will work with you to resolve it quickly.

Report security issues to security@dishpad.com security@dishpad.com

Security Practices

Regular penetration testing and vulnerability scanning

Role-based access control with least-privilege principles

Secure development lifecycle with automated code reviews

Multi-factor authentication available for all accounts

Comprehensive audit logging of all system access

Automated dependency scanning and security updates

Incident response plan with defined escalation procedures