Securing our customers' data is the paramount commitment at Uncountable, ensuring its integrity and confidentiality for authorized users.
SOC-2 Type II Certification: Subject to rigorous annual external audits for continuous adherence to industry-leading security practices.
ISO27001 Compliance: Strict adherence to international standards, providing a robust framework for information security.
HIPAA and GxP Compliance: Committed to meeting the stringent requirements for healthcare and pharmaceutical data protection.
Privacy Shield Membership: Demonstrated commitment to data protection while participating in the Privacy Shield program.
Confidentiality: Treating customer data as confidential and proprietary, enforcing access controls through role-based mechanisms.
Encryption Protocols: Employing AES-256 encryption for data at rest and TLS for in-transit data.
Data Segregation: Rigorous schema-level isolation and regular penetration testing to ensure customer data segregation.
Data Classification: Classifying data based on confidentiality, proprietary, or other standards enforced with differentiated user access
Web Application Security:
Server Audits: Regular audits of web servers to uphold the highest standards of security., including: Content Security Policy, XSS-Protection, HTTP Strict Transport Security, X-Content-Type-Options, and X-Frame-Options.
Email Security: Leveraging the AWS secured email service and implementing Sender Policy Framework (SPF) for domain security.
File Security Controls: Robust file-sharing mechanisms with per-user controls, malware scanning, and unrestricted file size handling.
Application Integrity: Ensuring the Uncountable application cannot be embedded or proxied through external clients.
Browser Supports: Supporting all modern browsers and operating systems as well as mobile browsers for iOS and Android.
SSO with SAML: Encouraging the use of Single Sign-On (SSO) through Security Assertion Markup Language (SAML) for enhanced account security.