Mongo Atlas is supporting the most import data security regulations: HIPAA, SOX, PCI
Let’s say, if I promoted my product as a business product and was asked to present specs of the DB security, I would refer to the link above indeed. This is having in mind that the Oplog is being taken care by Atlas.
What would you think about having the RedisOplog … oplog, with a non-compliant host or a host with no specified security levels or a host which is not particularly HIPAA, SOX or PCI compliant?
Do you feel we could/should add some specifications to the package about this particular thing. Perhaps some help for the developers in terms of awareness and how to achieve (and make sure of it) compliancy.
I added RedisOplog last night into one of my projects and being new to Redis I found it really challenging to understand all the bits and pieces in terms of achieving data privacy compliancy (did it over AWS EC2).