Cloud Security Statement

Privacy

We are committed to ensuring that your personal data is secure and have adopted security measures in-line with applicable data protection law. To preserve the integrity of your personal data and prevent data loss and unauthorised access or disclosure, we have put in place appropriate physical, electronic and managerial procedures to safeguard and secure the information we collect online and protect it from loss, misuse and unauthorised alteration and destruction. For more information, please see our privacy policy.

People and Access

Within Qlerify, only a few trusted employees have access to the production environment for the purposes of maintaining our cloud services and assisting our customers. Customers are responsible for maintaining the security of their own login information.

Data Storage

Data at rest is encrypted following industry standards. Additionally, all communications with Qlerify are protected with HTTPS using TLS.

Backups

Customer data is backed up with point-in-time recovery backups that provides continuous backups of data for 35 days.

Disaster Recovery

Qlerify has a disaster recovery process in place and it is tested on a regular basis.

Facilities and Hosting

Qlerify is hosted by Amazon Web Services (AWS). Amazon is responsible for the security of its actual data centers and the AWS cloud. Qlerify is hosted in AWS data centers inside the European Union.

AWS is well known for its high level of security and has been certified by third-party organizations and manages many compliance programs to comply with laws and regulations. A list of such certifications and compliance statements can be found here. Some examples:

HIPAA

GDPR

ISO 27001

ISO 27017

ISO 27018

ISO 9001

SOC 1/2/3

PCI DSS Level 1

AWS has a public SOC 3 report on Security, Availability & Confidentiality (pdf).

You can find more information here:

https://aws.amazon.com/security/

https://aws.amazon.com/compliance/data-privacy-faq/