Security is very important to us. We safeguard your data in many ways.
The connections to the Salesflare application and services are encrypted using a modern cipher suite. It uses the latest TLS supported by your browser. For up-to-date information on the supported version of TLS and the supported cipher suites you can run a scan here for the API and here for the application.
Your data is encrypted by default, both at rest and in transit. The encryption keys are themselves encrypted using a master key, stored in a secure keystore, and changed regularly.
Passwords are encrypted in the database using a one-way algorithm according to industry standards.
To protect you from the unlikely risk that your data might be compromised, automatic data back-ups are made on a daily basis.
These are securely stored and can easily be restored to perform a point-in-time recovery to a specific state of the database instance, down to the very transaction.
Your data is safely stored on Google Cloud servers within the European Union, more precisely in St. Ghislain, Belgium.
The server infrastructure is SSAE 18, ISO/IEC 27001, PCI DSS v3.2.1, SOC 1/2/3, FedRAMP, and HIPAA compliant.
We conduct regular and systematic checks on our API endpoints and applications to ensure maximum security, both internally and conducted by an external firm. (We even made it as a reference case.)
We also run a Vulnerability Disclosure Program, where you responsibly report issues and findings to us.
If you have further questions you can contact our support through the chat on this page or [email protected].
If you have technical questions or want to report something check the Contact section of our Vulnerability Disclosure Program.