# RILLA Shield — SIG Lite (summary)

A full Shared Assessments SIG Lite response is available under NDA. Contact security@rillashield.app.

## High-level summary

- **Access control:** Role-based (Owner, Admin, Approver, Viewer). MFA available to all users. SAML SSO available on Business plans and above.
- **Encryption:** TLS 1.2+ in transit; AES-256 at rest (managed by hosting provider).
- **Network security:** All traffic terminates at Cloudflare with DDoS protection. No public database access — all queries go through Row Level Security policies.
- **Application security:** Dependency scanning on every build. Quarterly internal penetration testing. Annual third-party penetration test (in progress).
- **Audit logging:** Immutable, append-only audit log of all sensitive actions, retained for 12 months minimum.
- **Incident response:** Documented runbook. 72-hour customer notification for any incident affecting customer data.
- **Business continuity:** Daily encrypted backups with point-in-time recovery up to 7 days. Cross-region restore tested quarterly.
- **Personnel:** Background checks on staff with production access. Annual security awareness training.
- **Data residency:** Customer data hosted in Australia (ap-southeast-2).
- **Sub-processors:** See `/compliance/sub-processors.md`.