Resources / Compliance / Information Security
Dark Mode
August 10, 2015

Information Security

Overview

Devensoft is ISO 27001 compliant and SOC 2 Type II audited annually. We are trusted by some of the largest global companies to safeguard their data.

Along with its infrastructure partner Amazon Web Services (AWS), Devensoft supports a vast array of compliance programs.  With many global public companies on our M&A platform, we are committed to protecting our customers’ data across the globe.

Your Privacy & Data Security

Securing our customers’ data is our top priority. Our software is accessed by companies around the world representing multiple industries, including banking, healthcare, financial services, pharmaceutical, manufacturing, technology, and more. We have been vetted and approved by our customers to store their confidential / restricted data.

We know customers care deeply about their privacy and data security. That’s why we have implemented sophisticated technical and physical controls designed to prevent unauthorized access to your information.

Formidable Enterprise Security

Robust security measures designed for enterprise-level protection.

Take complete control over application instance and content access. Our powerful suite of advanced data access and logging features empowers you to manage permissions effectively. Seamlessly support user and role-based security with confidence.

Leverage our North America hosting region as the primary choice. Alternatively, opt for our EU hosting region to align with legal and regulatory needs, ensuring secure and compliant data processing and storage for our valued customers.

Benefit from SSL encryption for secure content transit and AES 256-bit encryption for robust protection of content at rest. Your data’s safety is our utmost priority.

Retain absolute ownership of your data throughout. Seamlessly export and import your data whenever necessary, ensuring complete control and flexibility. Your data, your choices.

Benefit from disk-level encryption to safeguard all data at rest. Rest assured, our backup processes also employ the same robust encryption measures, ensuring comprehensive protection at all times.

Experience seamless access with Single Sign-On (SSO) support for leading identity providers like Active Directory, PingID, Okta, and more. Enhance security with the added layer of protection through Multi-Factor Authentication (MFA). Your authentication needs, fully covered.

Gain full visibility into user activities and data modifications within the application. Our advanced tracking system records logins and data changes at a granular data field-level, attributed to specific users. Empower yourself with a comprehensive Audit Report, accessible anytime, to keep tabs on your M&A operations.

Benefit from advanced features such as intrusion detection and prevention, anti-malware capabilities, file and system integrity monitoring, and log inspection. Your data’s protection is entrusted to state-of-the-art security measures.

Security Assurance Programs

SOC 2 Type II audit

SOC Reports

Service Organization Control (SOC) Reports are independent third-party examination reports that demonstrate how Devensoft and AWS achieve key compliance controls and objectives. The purpose of these reports is to help you and your auditors understand the AWS controls established to support operations and compliance.

The SOC 2 Security & Availability and SOC 3 Security Reports are prepared in accordance with Attestation Standard Section 101 (AT 101) which is a standard that enables an auditor to report on subject matter other than financial statements based on the AICPA Guide Reporting on Controls at a Service Organization Relevant to Security Availability, Processing Integrity, Confidentiality, or Privacy and Trust Services Principles and Criteria.

EU GDPR Compliance

The EU Data Protection Directive refers to the Directive on the protection of individuals with regard to the processing of personal data and on the free movement of such data (also known as Directive 95/46/EC). Broadly, this Directive sets out a number of data protection requirements, which apply when personal data is being processed.

Devensoft customers can choose to use one region, all regions or any combination of regions where their data will be stored. This allows customers with specific geographic requirements to establish environments in a location(s) of their choice.

Cloud Security Alliance

Cloud Security Alliance

Devensoft and AWS participate in the Cloud Security Alliance (CSA). CSA is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products. CSA’s activities, knowledge and extensive network benefit the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provide a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem.

Discover
the Power of
Devensoft