Security
Security by default. Documented, not implied.
Our security posture is built into the platform — you don't have to flip a switch or pay an add-on. Here's exactly what that means.
Physical
- Tier IV data centers across 12 regions
- Biometric + multi-factor entry; 24/7 staffed
- CCTV with 90-day retention; tamper-evident cages
- Power: dual-grid feeds, on-site generators, fuel SLAs
Network
- 1.5 Tbps anti-DDoS edge with automated L3/L4 mitigation
- Managed WAF on Pro and above (OWASP Top 10 + custom rules)
- Private VLANs at 10 Gbps; zero public exposure required
- BGP-routed redundant transit from 4+ Tier 1 providers per region
Application
- FIPS 140-2 Level 3 HSMs for per-tenant encryption keys
- Encrypted-at-rest on every NVMe; AES-256-XTS
- TLS 1.3 by default; HSTS preload; certificate transparency monitored
- Immutable audit log streamed to a separate region
People & process
- Background-checked staff; principle of least privilege
- All admin access via SSO + hardware MFA; no shared accounts
- Quarterly internal pentest; annual external third-party pentest
- Bug bounty for responsible disclosure (security@vintonyhost.com)
Report a vulnerability
We take security disclosures seriously. PGP key + scope at security@vintonyhost.com.