App content and data are stored on various clouds, and it’s possible you may have security concerns or policies against cloud storage systems. Please see below for information regarding the security measures that exist to protect the information stored on each cloud.
With the exception of images and documents, all app data is stored in our database. The database is in a cloud on Amazon Web Services and only accessible via our servers. So the database itself is not accessible publicly. Our applications implement authentication and authorization and application logic on top of the database to ensure we return only the proper data for the event and user.
Servers: Amazon Web Services (Elastic Compute Cloud a.k.a EC2) using Ubuntu Server 12.04 LTS
Database: Amazon Web Services (Relational Database Service a.k.a RDS) using MySQL
High Availability / Redundancy: See Security doc.
Other Clouds: S3.amazonaws.com, cloudinary.com & res.cloudinary.com
These clouds only host the images and uploaded documents on the app. The data is public on all of these clouds, but the names and file paths are not indexed or listable. This means you have to know exactly which file you need in order to access it (which the app does).
For more detailed information, please visit http://www.eventmobi.com/security/ and/or request our security document, which covers Security, Reliability, Disaster Recovery and Compliance.