SECURITY

Data Protection & Compliance

As stewards of customer information, FiREapps takes its responsibility for security seriously. FiREapps has adopted and implemented security controls, protocols and standards recognized as best practices by global information security organizations to govern development and administration across all applications, infrastructure and internal processes.

PRODUCT SECURITY

  1. Data Encrypted in Motion and at Rest
  2. Restricted Application-only Access to Data Layers
  3. Role-level Access & Idle Disconnect
  4. Complete Audit Trail
  5. Continuous Monitoring of Network Vulnerabilities
  6. Prevention of Malicious Acts
  7. Data Back-up
COMPLIANCE

Voluntary implementation of information security programs ensures secure management and handling of all information and assets with FiREapps solutions.

SSAE 18

 
FiREapps has been undergoing SSAE 18 SOC 1 Type 2 audits (equivalent) since 2009.

To obtain certification, FiREapps undergoes in-depth reviews of critical process controls, service providers and mapping of the User Control Consideration of FiREapps controls to ensure consistency and completeness across organizations.

Information Privacy

 
FiREapps complies with EU-US and Swiss-US Privacy Shield Requirements for the protection and safeguarding of personally identifiable information.

ISO 27001

 
FiREapps has been compliant with ISO 27001 standards since 2015.

To achieve compliance with ISO 27001 standards, FiREapps demonstrates a working Information Security Management System (ISMS) and mitigates risk through the implementation of controls by processes, politics and systems across departments and staff.

General Data Protection Regulation (GDRP)

 
FiREapps complies with the provisions of GDPR and has completed a third-party readiness assessment to ensure all measures are met. Additionally, appropriate procedures and practices were adopted to ensure personal data is being properly handled and processed.

ADDITIONAL SECURITY CONSIDERATIONS

Applications are hosted on the public cloud, enabling FiREapps to utilize the resources of organizations like Microsoft and Amazon to continually ensure the security of client data and information.