Security Overview

Google Cloud Security Foundation

Google Cloud provides enterprise-grade security built on the same infrastructure that powers Google’s services worldwide:

  • Global Compliance & Certifications (ISO, SOC, GDPR, HIPAA, etc.)
  • Encryption by Default for data at rest and in transit using TLS and AES-256
  • Identity & Access Management (IAM) for fine-grained role-based access control
  • Network Security with VPC isolation, DDoS protection, and firewalls
  • Continuous Monitoring & Threat Detection through Cloud Armor and Security Command Center

Firebase Email/Password Authentication

Firebase Authentication offers a secure and easy-to-use identity system:

  • Industry-Standard Protocols (secure password hashing with bcrypt or scrypt)
  • Managed Auth Flows for account creation, sign-in, and password resets
  • Built-In Protection against credential stuffing and brute-force attacks using Google’s risk analysis
  • Seamless Integration with multi-factor authentication (MFA) and federated identity providers

Firebase Security Rules & Controls

Firebase adds an application-level security layer designed for real-time databases and Firestore:

  • Granular Access Rules enforce read/write permissions based on authentication and request context
  • Serverless Security with rules executed at the database level (no backend needed)
  • Strong Client SDK Enforcement prevents unauthorized data exposure
  • Integration with Google Cloud IAM & Monitoring for consistent governance across services

Bizby Security Highlights

On top of Google Cloud and Firebase’s foundation, Bizby ensures security and compliance tailored for Canadian organizations:

  • Battle-Tested Authentication: Secure sign-in and access control using Firebase Authentication, with support for email/password login.
  • End-to-End Encryption: Your data is encrypted both at rest and in transit using TLS and AES-256, ensuring your boards and content remain private and secure.
  • Granular Access Control: Set board-level permissions to manage exactly who can view, comment, or edit—ideal for teams and external collaborators.
  • Canadian Data Residency: All boards and user data are stored in Canada, with primary residency in the Montreal (northamerica-northeast1) Google Cloud region, supporting compliance and peace of mind for Canadian organizations.
  • Regional Cloud Functions: All backend logic and automation is powered by Google Cloud Functions, deployed exclusively in the Montreal (northamerica-northeast1) region for data residency and low-latency performance.
  • Enterprise-Grade Reliability: Bizby runs on Firebase, built on Google Cloud’s globally distributed infrastructure, offering auto-scaling, high availability, and compliance with standards like ISO 27001 and SOC 2.

Executive Summary

Together, Google Cloud, Firebase, and Bizby deliver a comprehensive, multi-layered security model:

  • Enterprise-grade infrastructure protections
  • Robust user authentication
  • Granular and board-level access controls
  • Canadian data residency and compliance

This combination provides strong safeguards for sensitive data, regulatory compliance, and scalable application security — enabling organizations to build and collaborate with confidence.