How we handle security

ISO 27001:2013 Security Certified
ISO/IEC 27001 is the most widely used information security standard prepared and published by the International Organization for Standardization (ISO), the world’s largest developer of voluntary international standards. The certification recognizes that SalesScreen has designed and implemented a set of controls and measures to effectively manage risk and achieve compliance on a continual basis to protect customer information and data.

Data hosting and storage / data center security
We use Microsoft Azure as our exclusive cloud hosting provider. All our services and data are hosted in Microsoft Azure facilities in Europe. Microsoft Azure is a leading cloud provider, and holds industry best security certifications, such as SOC2 and ISO 27001. For more information on their security and privacy measures, please visit Azure Trusted Cloud.

Encryption
All data sent to or from SalesScreen is encrypted in transit, our API and application endpoints are TLS/SSL only. We also encrypt data at rest using an industry-standard AES-256 encryption algorithm.

Disaster Recovery
We continuously back-up data stored in our service using point-in-time restore (PITR) in Azure. We have documented incident response and disaster recovery plans to ensure we can recover from incidents in a timely manner.

Status
We continuously monitors our uptime and make our system status publicly available.

See our status page.

Security White Paper
Our security approach focuses on security governance, risk management and compliance. This includes encryption at rest and in transit, administrative access control, system monitoring, logging and alerting, and more.

See our security white paper

Contact
If you have general security questions or concerns please email us at security@salesscreen.com.