Data security

This article is part of the Security & Permissions Guide

Insightly is SSAE 16 SOC 2 Type 1 compliant.

Insightly Inc. complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.

The Insightly server farm is also SOC 2 compliant. It is located in a United States SSAE 16- and ISAE 340-compliant data center with redundant power and cooling, active fire detection and suppression, and staffed 24×7 by senior systems and network engineers. We utilize a storage infrastructure that is highly durable and fault tolerant, with multiple levels of redundancy built in, like writing every file to multiple storage facilities in different locations synchronously to ensure against data loss.

Our databases are also backed up daily and securely transferred and stored with military grade AES-256 encryption to multiple off-site locations for disaster recovery purposes.

All our services are remotely monitored from 14 different locations on four continents around the world to track uptime and response times and alert us of any abnormalities in service or performance, all in real time.

Insightly is also proud to be one of the first apps in the world to be awarded the ‘TRUSTed Apps Data Privacy Certification for Google Apps’ for Insightly for Google Apps, which is available in the Google Apps Marketplace.

Insightly is actively looking into the GDPR — the EU's regulation around data privacy — and working towards being fully compliant by its enforcement date of 25 May 2018.

For more detailed information, review our privacy policy.

Have more questions? Submit a request
Top