Information Security Policy

Physical Security & Disaster Recovery

Warmly’s services are hosted on Firebase, which enforces strong physical security practices at its data centers. See policy here.

Information and Data Security

Warmly’s information security policy is reviewed with all new employees and available to all employees
Employees are made aware of any information security policy updates and other security-related process updates
To report an identified security vulnerability in our services, please email us at

Accounts and Passwords

Employees are required to use a password manager for all internal and third-party user accounts and are encouraged to use strong, frequently changed, random, non-shared passwords
Passwords to Warmly user accounts are salted and hashed using industry standard encryption algorithms before storage
Warmly user sessions expire after a period of inactivity