Boardable Overview
      Back to home
      1. Help Center
      2. Boardable Overview
      3. Boardable Overview

      Boardable Data Security

      Learn how Boardable protects your data and privacy

      Your security is our primary concern.

      Boardable employs best practices in web development to ensure that your information and documents are protected from malicious actors. Take comfort in knowing that your personal information is secure. Boardable will never share your data with any third parties.

      Learn more about our security practices.

      Data Storage and Transport

      We use Amazon Web Services (AWS) to store our data. AWS provides secure data centers and a network architected to protect information, identities, applications, and devices. AWS is the highest industry standard for data storage with industry-recognized certifications and audits: PCI DSS Level 1, ISO 27001, FISMA Moderate, FedRAMP, HIPAA, and SOC 1 (formerly SAS 70 and/or SSAE 16) and SOC 2 audit reports.

      All data is encrypted at rest using AWS-managed encryption and web traffic is encrypted and sent securely over SSL.

      Customer Data

      Boardable’s information security program includes administrative, technical, and physical safeguards that protect customer data against accidental, unauthorized or unlawful destruction, disclosure, and access. 

      Boardable App Password Policy

      Each Boardable user sets his or her own password. These passwords must have at least 8 characters. A list of the top 1,000 most commonly used passwords is prohibited. All passwords are encrypted.

      Learn more about our password requirements. 

      Boardable Privacy and Terms

      Boardable is Privacy Shield compliant. All users are asked to accept our Privacy Policy and Terms of Service when they create a profile in our product.

      Expunging Customer Data

      On request we will delete your personal data from Boardable and from any third-party services we employ.

      Credit Card Data

      Boardable uses Stripe to process credit card information. All credit card data is sent directly from our customers to Stripe; none of it is exposed on our website or server at any time. Stripe data is certified to PCI Service Provider Level 1 and can only be viewed by a PCI-certified auditor. 

      Cybersecurity Coverage

      We conduct an annual penetration test, a simulated cyberattack against our systems that surfaces exploitable vulnerabilities. Red Rock IT Security is our cybersecurity provider.

       

      Questions? Contact your CSM or write to the Support team at support@boardable.com