At Taskade, we understand the importance of security, and we take it seriously. Security is foundational to every decision we make. Every decision in creating Taskade begins with the safety and privacy of your data in mind.
Taskade prioritizes user security through robust authentication measures. We mandate a highly secure password formula for all users. As an added layer of protection, we support Two-Factor Authentication (2FA) through Google Sign In and even greater security through Multi-Factor Authentication (MFA).
MFA is a security process that requires multiple methods of authentication from distinct categories of credentials to verify a user's identity. By necessitating various forms of verification, MFA significantly bolsters security, making unauthorized access to your account far more challenging.
Additionally, Taskade offers advanced authentication options for premium customers through top identity providers: Azure AD, Okta, and Google Workspace. We support both SAML (Security Assertion Markup Language) and SCIM (System for Cross-domain Identity Management).
SAML (Security Assertion Markup Language): An open standard allowing identity providers to pass authorization credentials to service providers. This ensures seamless and secure user access without the need for passwords. Taskade supports SAML authentication via Azure AD, Okta, and Google Workspace.
SCIM (System for Cross-domain Identity Management): Facilitates the automation of user provisioning and de-provisioning, making it easier to manage and synchronize user identities. Taskade integrates with SCIM via both Azure AD and Okta.
By providing diverse authentication avenues across leading identity providers, we ensure your data remains protected and in trusted hands.
Taskade uses encryption at rest and in transit, but not end-to-end. This ensures features like full-text search are possible. Our encrypted database instances use the industry-standard AES-256 encryption algorithm to encrypt your data.
Your data is safe with Taskade! Only you and collaborators you have invited to your workspace or project will have access. Projects and workspaces are by default private until you share or invite others to them.
The Taskade team has severely limited internal access to any data on our servers. All requests to access the production servers for maintenance or updates are routed, verified, and authorized by members of the executive team. These team members have undergone rigorous background checks and have a legal, vested interest in keeping customer data safe and secure.
We are working on compliance practices to meet or exceed industry standards and audits. This is one of our top priorities.
Taskade AI harnesses OpenAI's technology to provide an intelligent suite of AI-powered tools, employing a blend of GPT-4 and GPT-3.5 Turbo throughout the application. Our AI Workflow Generator, powered exclusively by GPT-4, creates tailor-made templates, boosting your team's project creation speed and efficiency.
While Taskade AI enhances your work with these powerful tools, your data security remains a priority. Adhering to our stringent data protection protocols, we assure you that your information will not be used for model training. Any data shared with our partners is exclusively to facilitate the delivery of Taskade AI features, and we strictly prohibit them from using your information for training their models or any other purposes. With Taskade AI, you can enhance your productivity while ensuring your data remains secure and confidential.
Taskade works with a variety of service providers to enhance our own security architecture, and we only choose to work with the best security partners in the industry. Member data may be stored in the Taskade private virtual cloud (such as Amazon Web Services), which we built to run business operations. These partners don't have the keys to decrypt member data stored on their servers.
We deploy monitoring and (thousands of) alerts for system health, product health, and abuse (attack signatures, audit events).
Our server status page is completely separate from our production platform, all the way up to the domain registrar, and lets you know of any issue affecting production, as well as the @Taskade Twitter account.
Taskade's revenue comes from paid subscribers — not advertisers. You can use Taskade for free, and upgrade any time. Taskade will never sell your information. Taskade is founded by seasoned entrepreneurs and backed by reputable investors. All Taskade employees undergo rigorous background and security checks before being hired.
Taskade processes credit card payments via Stripe. Stripe is a PCI-certified payment provider and meets arduous compliance standards. We also structure our payment forms so that your payment details are sent directly to Stripe’s systems and not stored in Taskade, which is an additional layer of security.