Security

We will never sell the data we extract for you to other companies. You are the owner of your data. There are some other products out there similar to SigParser that do sell your data. You should watch out for those. Read their terms of service. Even some products that you pay for will take your data and sell it. Google's security audit process has done a good job of shutting off some of these services but not all of them.

We have engaged Vanta to certify that we are SOC2 compliant and continually monitor our compliance. If you have questions about SOC2 compliance, you can learn more here.

We run our servers in Amazon run data centers called Amazon Web Services. These offer secure, reliable servers to host your most sensitive business data. Many of the companies you can think of run their services in Amazon Web Services.

We had Leviathan Security Group conduct a security audit most recently for us. They were one of two vendors Google required we use in order to access Gmail data. This involved a penetration test and policy and procedure review. We can provide an attestation letter of the results.

We use industry standard 256 bit SSL/TLS 1.2 support to encrypt all data traffic. We also encrypt your email credentials while at rest. All the data stored by SigParser is stored encrypted at rest. This includes databases and logs.

We store log data only as long as required to diagnose issues. Log data is stored encrypted at rest. Our standard practice is to store application log entries for 60 days. This log data may contain identifying information required for diagnosing sync issues. Access to these logs is strictly controlled. These logs are cleaned automatically by AWS after 60 days. We have other log entries that we store for longer for security purposes but these won't contain personally identifiable information of your contacts.