Data Security and Privacy Measures
iSpring Suite prioritizes data security and privacy and adheres to the General Data Protection Regulation (GDPR) guidelines. Through the Data Processing Agreement (DPA) and Standard Contractual Clauses (SCC), iSpring ensures that customer and end-user data is safeguarded from unauthorized access.
Trusted Hosting Providers
iSpring collaborates with reputable hosting providers such as Liquid Web, Amazon Web Services, FirstColo, and Leaseweb. Data for clients in the European Economic Area (EEA) and other regions is stored in secure AWS and FirstColo facilities, while client contact information is managed in Leaseweb data centers.
Data Protection Practices
To enhance data protection, iSpring employs multiple hosting providers for traffic rerouting during emergencies. Secure HTTPS connections, firewalls, and backup technologies are utilized to safeguard customer data. The monitoring of server performance, internal and third-party penetration tests, and regular security system checks ensure a high level of data security.
Employee Access and Certification
Access to customer data is restricted to authorized personnel, and all employees undergo rigorous background checks. iSpring maintains ISO 27001 certification, adhering to international information security standards. Additionally, the company is ISO 27701 certified, enhancing privacy rights protection within the information security management system.