Security Roles and Responsibilities
This article outlines the security responsibilities for the various aspects of Sevalla as a cloud service provider.
| Static Site Hosting | Application Hosting | Database Hosting | |
|---|---|---|---|
| User account | Customer | Customer | Customer |
| User management and access | Customer | Customer | Customer |
| Site, application, and database resources | N/A | Customer | Customer |
| Content | Customer | Customer | Customer |
| Git access | Customer | Customer | Customer |
| Network and infrastructure | Sevalla | Sevalla | Sevalla |
User account
It is your responsibility as a customer to manage your user account. This means you are responsible for keeping your credentials safe and using strong passwords to prevent your login details from being compromised. Sevalla allows you to protect your login details even further with Two-Factor Authentication (2FA), which you can enable within Sevalla > User Settings > My Account.
User management and access
Company Owners and Company Administrators have access to add and remove users at any level. Company Developers can view the company users and grant users access to services. It is your responsibility to ensure all users who have access to your company and services have the correct access level. Find out more in User Management.
Application, and database resources
If you’re hosting an application with Sevalla, you must ensure you choose the correct build resources and pod size to support your application. If you’re hosting a database with Sevalla, you must ensure you choose the correct database size.
Content
You, as a customer, are responsible for all content on your services, and you must comply with Sevalla’s Terms of Service, which includes a list of prohibited content. Sevalla has no obligation to monitor, validate, correct, or update your content in any way. However, if any content violates Sevalla’s terms of service, Sevalla may, in its sole discretion, alter, remove, or refuse to display it.
Git access
If you use Application or Static Site Hosting, you can connect to a Git provider and authorize/grant access to Sevalla to verify your identity and access your Git repositories. You can also use your Git service provider login with Single-Sign-On (SSO) to sign up or log in to Sevalla. Sevalla does not store your Git credentials, and it is your responsibility to keep them safe.
Network and infrastructure
With our Cloudflare integration, Sevalla customers benefit from a more secure firewall with included DDoS protection, high-performance CDN, Edge Caching, HTTP/3 support, and more. Thanks to the flexibility afforded by the use of a container-based infrastructure, proactive load management by our Engineering team, and the use of a best-in-class cloud provider in Google Cloud Platform, we are able to offer an SLA-backed 99.9% uptime guarantee. For more details about our infrastructure and architecture, see: