Security & Privacy at Simahi Agent Hub
Last Updated: November 9, 2025
We are committed to protecting agent and client data. Simahi Agent Hub is built on modern cloud infrastructure, with encryption, access controls, backups, and secure development practices designed to keep your information safe and compliant.
Infrastructure
Simahi Agent Hub is hosted on Amazon Web Services (AWS), using Canadian data centres for our primary application and database hosting. AWS facilities include:
- 24/7 physical security monitoring and access controls
- Biometric access, video surveillance, and environmental protections
- Compliance certifications such as SOC 1, SOC 2, and SOC 3 (held by AWS)
Our core data (application, database, and primary storage) is hosted in Canada, with select third-party services (such as payments and messaging) processing data in other regions where necessary.
Data Encryption
We use encryption to protect your data both in transit and at rest:
- In Transit: All connections to Simahi Agent Hub use HTTPS secured with modern Transport Layer Security (TLS). This protects data exchanged between your browser and our servers.
- At Rest: Application data stored in our managed database (AWS RDS) and file storage (AWS S3) is encrypted at rest using strong encryption (e.g., AES-256) provided by AWS.
We also use encrypted connections between application servers and the database to help ensure end-to-end protection.
Identity & Access Management
Simahi Agent Hub includes identity and access controls to help keep your workspace secure:
- Secure login using unique email and password credentials for each agent.
- Role-based access at the account/organization level to control which users can view or manage specific data.
- Session management and protections against common attacks where technically feasible.
- Audit and activity logs that tie important actions (e.g., task updates, email sends, customer changes) back to individual user accounts.
We recommend that all users follow strong password practices and avoid sharing login credentials.
Secure Software Development
Simahi is developed using modern engineering practices focused on stability and security:
- Version control and code review practices to maintain code quality.
- Separate environments for development and production, helping isolate testing from live customer data.
- Dependency management and patching to address vulnerabilities in underlying libraries and frameworks.
- Change management processes to safely deploy new features and fixes.
Incident Response
We maintain an incident response process designed to quickly address potential security issues:
- Monitoring of infrastructure and application logs for unusual or suspicious activity.
- Defined steps to identify, contain, and remediate potential incidents.
- Internal escalation procedures to ensure the right people are involved promptly.
- Where required by law or our agreements, we notify affected customers and relevant authorities about incidents that may impact personal information.
Disaster Recovery & Backups
To protect against data loss and support business continuity, we leverage AWS tooling and managed services:
- Automated database backups and snapshots through AWS RDS.
- Redundant storage for files via AWS S3 with built-in durability features.
- Regular reviews of backup configuration and restoration procedures.
These measures are designed to help us recover data in the event of infrastructure failures or other unexpected events.
Reliability & Monitoring
We aim to provide a stable and responsive experience for agents and teams:
- Application and infrastructure monitoring to track performance and availability.
- Automated alerts when key services are unavailable or degraded.
- Logging of application errors to quickly identify and fix issues.
Subprocessors
We work with carefully selected third-party providers (“subprocessors”) that help us deliver specific parts of the Simahi Agent Hub experience. These providers are contractually required to protect personal information and use it only for the purposes we specify.
| Name | Purpose | Primary Location(s) |
|---|---|---|
| Amazon Web Services (AWS) | Hosting, databases, and file storage | Canada (primary) & other AWS regions as required |
| Stripe | Payment processing and subscription billing | Canada, United States, and other regions (via Stripe infrastructure) |
| Twilio | SMS and telephony communication (e.g., reminders, verification codes) | United States and other Twilio regions |
| Email Delivery Providers (e.g., AWS SES) | Transactional and notification email delivery | Canada, United States, and other regions depending on routing |
| Analytics & Security Tools | Usage analytics, performance monitoring, and security protections | Varies by provider (commonly Canada & United States) |
This list may evolve as we add or change providers to improve reliability, security, or functionality. Where required, we will update this page and our agreements to reflect changes in subprocessors.
Privacy & Compliance
Simahi Agent Hub is designed with privacy in mind. We aim to align our practices with relevant privacy laws such as Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) and, where applicable, the principles of the EU General Data Protection Regulation (GDPR).
- We collect and use only the information needed to provide and improve the Services.
- We give organizations control over their own data and customer records.
- We support access, correction, and deletion requests in line with applicable laws and our Privacy Policy.
- Canadian customer data is primarily stored on Canadian AWS infrastructure.
For more detail on how we handle personal information, please refer to our Privacy Policy.
How to Contact Us
If you have questions about security, privacy, or data protection at Simahi Agent Hub, we’re happy to help.
Email (privacy & security): privacy@dothdigital.com
General inquiries: info@dothdigital.com
We’ll route your question to the appropriate person on our team and get back to you as soon as possible.