Data Security and Compliance: Policies, Certifications, and Encryption Standards

Have more questions? Submit a request

What are the various encryption and security standards?

CometChat maintains several detailed policies that ensure that your data is kept safe and secure.  These include:

  • Access Control Policy
  • Confidentiality Policy
  • Data Classification Policy
  • Data Protection Policy
  • Encryption Policy
  • Endpoint Security Policy
  • Information Security Policy
  • Physical Security Policy
  • Risk Management Policy
  • Vulnerability Management Policy 

At a high level all data is encrypted at-rest (AES 256) and in-transit (SSL/TLS). We maintain adequate Technical and Organizational Measures to ensure the security of your data.

How can I get more information about your various security policies and protocols

We are able to provide you with our Security and Privacy Framework and/or a copy of the Vendor Security Alliance questionnaire. Please submit a request here. You may also submit a request for a signed DPA including a list of Technical and Organizational Measures.

What security certifications do you hold?

We are SOC 2 and ISO27001 certified. In addition, we conduct reviews at least annually to ensure that we are compliant with HIPAA, PIPEDA, GDPR, and CCPA. 

Articles in this section

Was this article helpful?
0 out of 0 found this helpful



Please sign in to leave a comment.