Security

DiBlanco Premier Tax & Accounting Inc. implements banking and federal-grade security measures to protect your data.

1. Encryption

We use AES-256-GCM encryption for data at rest and TLS 1.3+ for data in transit.

2. Authentication

Mandatory multi-factor authentication (MFA) with PIN, email, app, or biometric. Passwords hashed with Argon2id.

3. Audit Logging

Immutable event logging with HMAC-SHA-256, 7-year retention, zero personally identifiable information (PII).

4. Compliance

We comply with IRS Circular 230, GLBA, NIST, GDPR, CCPA, HIPAA, PCI-DSS, SOC 2, ISO 27001, WCAG 2.1 AA.

5. Infrastructure

Hosted on DigitalOcean with Ubuntu 24.04 LTS, Apache 2.4.58, PHP 8.3-FPM, MariaDB. HTTPS enforced, HSTS preload, CSP nonce-based.

6. Monitoring

24/7 monitoring, WAF/Fail2Ban, rate limiting, Zero Trust architecture, fail-closed design.

7. Vulnerability Reporting

Report vulnerabilities to security@crm-diblancopremiertax.net.