API Authentication
All requests to the Brand API must be authenticated using a Secret API Key. Use the following authorization header with every API request:- Header Name: Authorization
- Format:
Bearer <YOUR_API_KEY>
Data Security
BrandsAPI uses encryption and secure infrastructure practices to help protect data across the platform.Encryption
- At Rest: All data stored in our databases is encrypted using AES-256 encryption.
- In Transit: All API traffic is served over HTTPS using TLS 1.2 or higher. This ensures data remains encrypted while traveling between your application and the BrandsAPI platform.
Isolation
BrandsAPI uses strict multi-tenant isolation. Your API usage data, account settings, and configurations are logically separated from other customers to help maintain privacy and security.Infrastructure Security
BrandsAPI is hosted on AWS, Amazon Web Services, using secure cloud infrastructure designed for reliability, scalability, and protection.- DDoS Protection: We use AWS Shield and Cloudflare to help protect the platform against large-scale distributed denial-of-service attacks.
- Vulnerability Scanning: We perform regular automated vulnerability scans across our infrastructure and application code to identify and address potential security risks.
