Security at Documize

What you need to know

Effective 7th February 2015

Documize Limited (“Documize”) is committed to protecting your data that resides on our infrastructure. Security is top priority for Documize and we fully understand that your Documize account will contain sensitive documents and data related to your business.

Reporting Security Issues

If you need to report an incident or have a security related concern, please contact security@documize.com

Physical Security

Documize uses ISO 27001, ISO 9001, PCI DSS Level 1, FISMA and SOC 1/2/3 certified data centers. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff utilizing video surveillance, state of the art intrusion detection systems, biometric locks and other electronic means. Only authorized personnel have access to the data center.

Software & Systems Security

Documize data center and software systems infrastructure is regularly updated with the latest security patches for all software components. Our servers are deployed behind multiple intrusion detection and firewall systems. Passwords are stored encrypted with no way to reverse engineer the contents.

Transmission & Communications

All data exchanged with Documize is transmitted over SSL. This covers both the web application and the Documize API.

Data Security and Backups

All customer data is written to multiple disks that are real-time replicated across multiple data centers. We use a minimum of two data centers for database storage.

We back up customer data on a daily basis with complete facility to restore to a previous point in time.

Employee Access

No Documize employees ever have access to customer data unless required for technical support and troubleshooting reasons.

Payment Processing

Our payment processor Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available.