The security measures employed by unusd.cloud and our data handling practices are detailed in this page.
🧙 Hub and Spoke model
Our AWS IAM Role on each of your AWS accounts utilizes the Hub and Spoke model in order to track your unutilized resources and spending information through a few read-only AWS API calls.
ExternalId employed by the AWS IAM Role is unique to each customer, effectively eliminating the confused deputy problem.
👀 Read-only Permissions
The unusd.cloud AWS IAM Role is limited to read-only actions which are listed below:
Updated on 2023-03-26
💾 Data storage
We do not persist any confidential AWS information or information related to your AWS account. Only unusd.cloud meta data configuration items are stored:
- AWS AccountIDs
- Email configuration settings
- Webhooks (Slack / Microsoft Teams) URLs
- Prefered scan schedule
TLS encryption is employed both