Keep Your Billing Data Secure
TimelyBill focuses on cybersecurity, risk mitigation, and locking down our infrastructure.
This helps us build trust with our customers as we expand into additional markets↗️. As we continue to build on our reliable reputation, these security measures help set us apart from our competitors.
TimelyBill is certified in the following compliance and regulatory frameworks:
Annual SOC 1 Type 2 audit
For more than a decade, TimelyBill has earned System and Organization Controls (SOC) certification.
- This is conducted by Marcum LLP, an independent, certified accounting firm specializing in SSAE 18 audits. They examine TimelyBill's controls related to network connectivity, firewall configuration, computer operations, database access, data transmissions, backup, software development, and other areas of our system.
- We continually demonstrate that our policies, procedures, and operations meet or exceed the stringent SSAE 18 criteria.
Annual PCI compliance attestation
We also receive annual attestation of compliance with the Payment Card Industry Data Security Standard.
- This is a self-assessment that helps us evaluate and report compliance with PCI DSS. The report documents our security posture and whether we have taken the necessary steps to protect cardholder data.
TimelyBill uses modern hosting facilities and network infrastructures:
Advanced data centers in Charlotte, Las Vegas, and Atlanta
TimelyBill serves up its cloud-based software from both Tier 4 and Tier 5-rated data centers.
- These facilities are built to maximize uptime, making TimelyBill an always-on application. Our hosting environment uses a redundant server infrastructure, networking devices, and disk subsystems.
High availability
TimelyBill customers have both production and stage database instances.
- These are unique to a customer and not shared. A third DB instance operates in a separate virtual machine as a synchronous replication of the primary database.
Data security
Our data protection includes failover clusters, backup transaction logs, daily offsite backups, anti-malware protection, file encryption, file integrity monitoring (FIM), and two-factor authentication (2FA).
We use additional layers to protect customer data, including IP filtering, SSL, and VPNs. By implementing these safeguards, TimelyBill prioritizes data security and maintains a strong defense against potential threats.
See related post: "Be Prepared: Ransomware and Software Safety"