All Collections
Salesflare
How do you keep my account secure and my data safe?
How do you keep my account secure and my data safe?

In short, what are the measures you take to guarantee maximum privacy & security?

Jeroen Corthout avatar
Written by Jeroen Corthout
Updated over a week ago

Security is very important to us. We safeguard your data in many ways.

Encryption

TLS 

The connections to the Salesflare application and services are encrypted using a modern cipher suite. It uses the latest TLS supported by your browser. For up-to-date information on the supported version of TLS and the supported cipher suites you can run a scan here for the API and here for the application.

Encryption

Your data is encrypted by default, both at rest and in transit. The encryption keys are themselves encrypted using a master key, stored in a secure keystore, and changed regularly.

Password encryption

Passwords are encrypted in the database using a one-way algorithm according to industry standards.

Back-ups

To protect you from the unlikely risk that your data might be compromised, automatic data back-ups are made on a daily basis.

These are securely stored and can easily be restored to perform a point-in-time recovery to a specific state of the database instance, down to the very transaction.

Data storage

Your data is safely stored on Google Cloud servers within the European Union, more precisely in St. Ghislain, Belgium.

The server infrastructure is SSAE 18, ISO/IEC 27001, PCI DSS v3.2.1, SOC 1/2/3, FedRAMP, and HIPAA compliant.

Security testing

We conduct regular and systematic checks on our API endpoints and applications to ensure maximum security, both internally and conducted by an external firm. (We even made it as a reference case.)

We also run a Vulnerability Disclosure Program, where you responsibly report issues and findings to us.

Questions

If you have further questions you can contact our support through the chat on this page or [email protected].

If you have technical questions or want to report something check the Contact section of our Vulnerability Disclosure Program.

Did this answer your question?