×
Home

Boardable Security

Boardable employs best practices for securing all user information, data, and documents. This includes the use of Secure Sockets Layer (SSL) ​certification which encrypts all browser data and Amazon Web Services (AWS)​. Learn more about Amazon’s security protocol at Amazon AWS Cloud Security.

AWS Document Storage
AWS Document Storage
Show details +
Documents are encrypted when uploaded to Boardable then stored on Amazon S3. S3 is redundantly stored on multiple devices across multiple facilities.
Document Center Security
Document Center Security
Show details +
The document center is accessible by administrators and members but not observers. Administrators can set limited access to each folder in the document center to specific groups.
Boardable Password Policy
Boardable Password Policy
Show details +
Each Boardable users sets their own password. These passwords must be 8 characters. A list of top 1,000 commonly used passwords have been excluded. Passwords are all encrypted.

Your Security
Is Our Primary Concern

Data Storage and Transport

We currently use Amazon Web Services (AWS) to store our data. AWS provides secure data centers and a network architected to protect information, identities, applications, and devices. AWS is the highest industry standard for data storage with industry-recognized certifications and audits: PCI DSS Level 1, ISO 27001, FISMA Moderate, FedRAMP, HIPAA, and SOC 1 (formerly referred to as SAS 70 and/or SSAE 16) and SOC 2 audit reports. User files are encrypted at rest using AWS-managed encryption and web traffic is encrypted and sent securely over SSL. For more information on AWS Security, click here.

Customer Data

Boardable’s information security program includes administrative, technical, and physical safeguards protecting customer data against accidental, unauthorized or unlawful destruction, disclosure, and access.

Boardable App Password Policy

Each Boardable user sets his or her own password. These passwords must be at least 8 characters. A list of the top 1,000 most commonly used passwords is prohibited. Passwords are all encrypted.

Boardable Privacy and Terms

Boardable is Privacy Shield Compliant. All users are asked to accept our Privacy Policy and Terms of Service when they create a profile in our product.

Check out our Boardable Privacy Policy and Terms of Service.

Expunging Customer Data

We work with customers to remove their personal data from the product and third parties we partner with upon request.

Credit Card Data

Boardable uses Stripe to process customer credit card information. All credit card data is sent directly from our customers to Stripe, and none of it is exposed on our website or server at any time. Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. For more information on Stripe, click here.

Cybersecurity Coverage

We conduct an annual penetration test which is a simulated cyberattack against our systems checking for exploitable vulnerabilities. Red Rock IT Security is our 3rd party cybersecurity service provider conducting automated scanning.

Click here to download

Data Retention

If your organization decides to leave Boardable we will work with you to export the data you need including documents, attendance records and your people directory.

Read full Privacy Policy