Effective 7th February 2015
Documize Limited (“Documize”) is committed to protecting your data that resides on our infrastructure. Security is top priority for Documize and we fully understand that your Documize account will contain sensitive documents and data related to your business.
If you need to report an incident or have a security related concern, please contact firstname.lastname@example.org
Documize uses ISO 27001, ISO 9001, PCI DSS Level 1, FISMA and SOC 1/2/3 certified data centers. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff utilizing video surveillance, state of the art intrusion detection systems, biometric locks and other electronic means. Only authorized personnel have access to the data center.
Documize data center and software systems infrastructure is regularly updated with the latest security patches for all software components. Our servers are deployed behind multiple intrusion detection and firewall systems. Passwords are stored encrypted with no way to reverse engineer the contents.
All data exchanged with Documize is transmitted over SSL. This covers both the web application and the Documize API.
All customer data is written to multiple disks that are real-time replicated across multiple data centers. We use a minimum of two data centers for database storage.
We back up customer data on a daily basis with complete facility to restore to a previous point in time.
No Documize employees ever have access to customer data unless required for technical support and troubleshooting reasons.
Our payment processor Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available.