Engine Trust Center
Welcome to Engine's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.
See Resources
Compliance
SOC 2 Type 2
Annual SOC 2 Type II Report
PCI
Annual AOC
GDPR
CCPA
Resources
SOC 2 Type II Report
Latest report from Dec 2024
PCI DSS 4.0.1
Latest AOC from 2024
Architecture Diagrams
System landscape and data warehouse architecture
Penetration Test Report
Executive Summary of latest penetration test
Workforce Information Security Policy
Contingency Planning Policy
WCAG 2.1 Accessibility Conformance Report
Web Content Accessibility Guidelines - Based on VPAT ver. 2.4
FAQs
How do I make a data subject request?
To make a data subject request, please reach out to us directly. You can send your request via email to [email protected], or if you prefer, you can also contact us by phone at 855-567-4683. We're here to assist you with any concerns or requests regarding your data.
Does Hotel Engine conduct penetration tests?
Hotel Engine engages with one of the best penetration testing consulting firms in the industry at least annually. Our current preferred penetration testing partner is Doyensec, one of the leading experts in penetration testing.
How does Hotel Engine encrypt data in-transit?
Hotel Engine uses TLS 1.2 or higher everywhere data is transmitted over potentially insecure networks. We also use features such as HSTS (HTTP Strict Transport Security) to maximize the security of our data in transit. Server TLS keys and certificates are managed and deployed through Cloudflare.
Does Hotel Engine encrypt data at rest?
All data at rest, encompassing customer data stored in our datastores and S3 buckets, is encrypted using strong, industry-recognized encryption standards such as AES-256. This practice is part of our commitment to ensuring the security and integrity of your data, in line with the latest compliance and industry benchmarks.