SharpSpring takes your data security very seriously and takes many steps to maintain it's integrity. Here are a few of the precautions we take to keep SharpSpring safe.
How SharpSpring Stays Safe
-
SharpSpring goes through a quarterly PCI audit administered by TrustWave. The audits evaluate SharpSpring’s public web interface and its vulnerability to 3rd-party attacks.
-
All sensitive data shared between the web browser and servers is transferred over SSL using high-grade encryption utilizing 256-bit keys.
-
Credentials are stored in an encrypted on-disk format to prevent the data from being compromised in the event that a data theft threat occurs.
-
SharpSpring users are given separate instances of the app, with each client's data being partitioned to avoid cross-customer data corruption.
-
SharpSpring performs routine security audits on all servers and applies security updates as they are made available.
-
SharpSpring uses a redundant server architecture that will protect the client's data and the continuity of SharpSpring’s services in the event the main servers go down.
-
As a Salesforce Partner and google API Partner, SharpSpring has been subjected to rigorous 3rd-party security audits and passed.
-
All SharpSpring source code is peer reviewed and audited for common security flaws before it goes into production.
-
SharpSpring conducts routine backups of all customer data and has safeguards in place to ensure the integrity of those backups.
-
SharpSpring has tested and updated its service against the Heartbleed Bug Vulnerability, first reported in April 2014 and is not vulnerable to the threat.