Question: What security measures are in place on Act! emarketing servers to comply with GDPR?
Product Family: Emarketing
Product: Act! emarketing
The following information may be useful to assist you with compliance for government regulations such as GDPR, you can find out more about GDPR in the following article:
Article ID 38964
What security measures are in place on Act! emarketing servers to prevent unauthorized, unlawful or accidental loss of information?
Only authorized personal have access to the Act! emarketing environment. All data on the emarketing servers is backed up on a regular scheduled basis.
What is the availability, confidentiality and integrity of data held on Act! emarketing servers?
Act! emarketing data is currently being migrated from our own managed servers in the USA and from or before 25 May 2018 will be held on servers managed by Amazon Web Services (AWS) in the USA. More information about AWS and GDPR can be found here:
Swiftpage controls/processes successfully underwent a Service Organisation Controls Type 2 (SOC2). While the process is certified by AICPAs, at least one of the auditors is an IT/Software security professional with substantial credentials. More information about SOC2 is available on the AICPA website here:
What encryption do we use for data in transit, and at rest?
In transit data flows within a private network such as a corporate or enterprise Local Area Network, all our communications are encrypted using industry standard best practices.
At rest data is stored in persistent storage i.e. on a disk, no encryption is used presently for emarketing however this is currently in the process of changing for Act! emarketing
How secure is the encryption on your emarketing servers?
The encryption used evolves over time as security standards change and are relevant to our security needs.