This document covers how Live++ operates from a security point of view. If you are interested in which data we collect, please refer to our privacy policy.
Installation
Live++ is on-premises software and completely standalone. It always runs on your company's local infrastructure (e.g. developer devices) and never in any kind of cloud environment.
Live++ can be submitted into version control and will run without any local installation necessary.
Live++ will not manipulate registry entries or install any kind of driver.
Live++ does not need process elevation or administrator privileges.
Internet connectivity
Live++ does not need any internet connection, except for when activating or deactivating a license. With a license stored locally, Live++ will run without ever talking to any internet server or service.
All communication with the activation server during license activation and deactivation is encrypted using TLS 1.2.
All processes associated with Live++ such as the Agent, Bridge and Broker running on a developer's device communicate using IPC and TCP/IP channels via LAN only.
Data storage and transmission
License activation data is stored in our backend hosted by Interxion/Digital Realty, accredited under SOC2, PCI-DSS, ISO 9001, ISO 14001, ISO 22301, ISO 27001, and ISO 50001.
Live++ does not collect or store personal data, confidential data, demographic information, or IP addresses.
Live++ does not collect any kind of telemetry or usage data.
Code signing
All Live++ binaries are digitally signed using an EV Code Signing certificate to prevent third parties from manipulating the executables.
