Looking for your account? Log in

Church Database Security
A safe, secure and reliable Church management system, built and hosted in the UK.

Keep your church data secure with ChurchApp

Reliable

Running on dedicated hardware with multiple links directly to the backbone of the UK's internet infrastructure, ChurchApp is available when you need it, whenever you need it.

Safe

Hosted in a secure, Tier 3 Data Centre, ChurchApp is backed up daily and protected by 24/7 security, fire suppression and redundant power failure systems.

Secure

With SSL encryption, dedicated server hardware and state-of-the-art physical security at our data centre, ChurchApp keeps your data locked away from prying eyes.

Support

ChurchApp email support is provided by the same team of developers that built it, meaning you're guaranteed to be helped by one of our team of experts, every time.

Backups

In order to ensure your ChurchApp data is 100% safe, dual backups are performed on a daily basis to separate physical servers in different locations across the UK.

Performance

ChurchApp builds on years of experience with web applications and runs on modern, high-capacity hardware, ensuring peak performance for all your users.

How can you be sure ChurchApp is 'reliable'?

ChurchApp runs in a data centre connected by multiple links to what is considered the centre of the UK's internet infrastructure, Telehouse London, as well as to the Manchester data network. This means that if one internet connection goes down, ChurchApp will still be available and unaffected.

How are you able to keep ChurchApp 'secure'?

All of ChurchApp uses SSL encryption, meaning that all the data passing between your computer and our server does so using 256-bit military grade encryption, making it nearly impossible for anyone else to see what you're sending. SSL is an industry standard technology and one you're probably familiar with if you use online banking; it's the same technology used by all the major UK and international banks.

In addition to this, all of our servers are EU based and hosted by one of the UK's leading data centres. The data centre has achieved ISO 27001 certification, which ensures a level of security that reduces the risk of breaches in the confidentiality, integrity or availability of data to a minimum.

On top of this, we've implemented a number of procedures and used a variety of technologies to help ensure that ChurchApp is as secure as possible:

  • Access to our production servers is only available to a very small number of pre-authorised computers in our offices (enforced by RSA keys).
  • We undergo penetration testing by a CREST approved organisation. No compromises have ever been found through penetration testing.
  • We run security scanning software within a sandbox environment that checks for and warns us of common vulnerabilities such as SQL injection and XSS attacks, amongst others.
  • Automated testing operates within our development team, helping us to identify whether changes made to the software yield the expected results. If the automated tests fail, the developer is notified, allowing them to fix the bugs before they're pushed to our production environment.
  • We use dedicated servers that are used exclusively by ChurchApp. Our server space is not used by any other organisations.
  • Each church has its own database, ensuring that each church's data is segregated from others.
  • User passwords have minimum length and strength requirements. When stored on the server, we use a one-way password hashing algorithm (based on the Blowfish cipher), with a variable salt which ensures that it is not susceptible to a hash table attack.

How safe is 'safe'?

The data centre used by ChurchApp uses state-of-the-art security and meets some of the strictest of industry security requirements in order to have achieved ISO 27001 certification. Add to that our dual backup procedure to multiple locations, where data is encrypted at rest and you can be assured your data is in good hands.

All server access is limited to only ChurchApp employees and we never give our server passwords to anyone else. We also use only dedicated hardware, meaning no one else uses other parts of our server, and therefore no one else even comes close to your data.

What do you mean when you say 'backups'?

A backup is a copy of the data within your ChurchApp account, and is taken in case of a catastrophic hardware failure or natural disaster, both of which are highly unlikely, however we believe it pays to be prepared for the worst. Your ChurchApp account is backed up in three separate ways:

  1. Firstly, the ChurchApp server runs what is called RAID, where two identical hard disks mirror each other. If one hard disk fails, the secondary hard disk takes over, and no data is lost in the process.
  2. Secondly, a nightly incremental backup of the entire server is kept in the same data centre as the ChurchApp server, allowing rapid recovery in the event of a major hardware failure.
  3. Finally, a secure incremental off-site backup is kept in a separate secure location. This backup would be used for data recovery in the event of a major natural disaster.

Try ChurchApp free for 30 days - just 60 seconds to sign up.

Free trial