Security, Data Protection & Compliance

Data Security And Privacy You Can Rely On

The world’s largest brands trust Accelevents to protect their data. Our team implements enterprise-grade best practices to ensure your data is always secure. 

SOC Logo

Accelevents is SOC 2 Type 2 attested

Accelevents has successfully implemented the SOC 2 Type 2 controls of Security, Availability, and Integrity of the process. A SOC 2 report attests the controls of a service organization are appropriately designed and implemented. The Trust Services Criteria (TSC) include availability, confidentiality, security, privacy and integrity of the process.

Achieving SOC 2 Type 2 compliance, which is verified by third-party auditors, indicates with confidence that Accelevents adheres to best-in-class security protocols. To access the full report please contact info@accelevents.com

Security and compliance

Permission sets

Customize what users can do in Accelevents with variable user permission sets suited for different levels of user access.

User access and device logs

User access logs are captured and stored for a minimum of 180 days.

Vulnerability management

We continuously scan for vulnerabilities. Plus, we undergo a yearly external penetration test by an independent third party.

Data principles

In addition to using 256-bit AES encryption for safe data storage, Accelevents also ensures secure network communication with TLS 1.2.

Change management

Every new Accelevents feature or bug fix goes through peer review before publishing. We also perform automated static application security scans and robust unit testing.

Security monitoring and logging

Accelevents maintains both system and event-based security logs. These logs are centralized in a SIEM and monitored by our Detection and Response Team.

Availability and continuity

Uptime

Accelevents services are deployed in multiple AWS data centers for high availability and are capable of scaling up automatically to handle increased traffic. Load tests are performed before each major release.

Disaster Recovery

Accelevents  has a formal Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP) defined and implemented to enable people and process support during any crisis or business interruptions. Accelevents maintains Disaster Recovery protocols in compliance with SOC2 Type 2.

GDPR badge

Data privacy and GDPR

We believe all users have the right to know what personal data is being collected. The General Data Protection Regulation (GDPR) is a regulation that requires businesses to protect the personal data and privacy of European Union (EU) citizens for transactions that occur within EU member states. These practices have been widely adopted as the standard in data collection.

Our commitment to customer data integrity and privacy is core to who we are as a company and what we stand for. We continue to monitor the recommendations around GDPR compliance from privacy-related regulatory agencies, and make appropriate enhancements to our product and third-party application agreements. As enhancements are deployed, we will provide you with regular updates as part of our disclosure process. For more information, please visit our privacy policy.

Applications and infrastructure

Accelevents’ application infrastructure is provided by Amazon Web Services, a secure cloud services solution. Amazon’s physical infrastructure has been accredited under ISO 27001, SOC 1/SOC 2/SSAE 16/ISAE 3402, PCI Level 1, FISMA Moderate and Sarbanes-Oxley.

All Accelevents applications are subject to recurring third-party security audits to identify any missed security bugs. We ensure only approved employees gain access to our application infrastructure and we require rigid authentication to gain entry. Accessing user data is only done on an as-needed basis and with full disclosure to the customer in an effort to provide elevated support.

Sub-processors

Accelevents uses sub-processors to assist in delivering the services described in the Terms of Service. A list of sub-process can be found here.

FAQ