DoTrust is ISO27001 registered and we take our obligations to protect customer data very seriously. As well as firewalls, encryption and all that good stuff which you expect, we have provided some additional security features.

IP Allow ListCopied!

Each API key you generate in the Console CAN have a list of IP addresses allowed to make requests using that key.

Any request where the IP address is not on the allowlist, or where the IP address cannot be determined, will be rejected by our server.

Velocity limitsCopied!

Each API key MUST have a velocity limit set. This determines the number of milliseconds between requests.

This feature is designed to protect both of us from runaway processes and certain types of brute force attack.

Kill switchCopied!

You can completely disable any API key which has been compromised or which you no longer need. This is done in the Console. Click the Edit button for the key, set Active to off, and save. All requests will be blocked from then on.