home
 
Security

We Protect Your Data

Notism and its affiliates provide proven industry-standard security for all customer data in Notism. We work to provide superior technologies and best practices to security, as well as partner with reputable enterprises that uphold the same value standards. With Notism you can be sure your data will be as safe and secure as possible.



Physical Security

Notism works with Digitalocean, a globally recognized service provider that delivers Cloud and Managed Hosting Solutions. In compliance with the Safe Harbor agreement Notism chose their server base to be located in Frankfurt, Germany. Digitalocean adheres to the following information security and related certifications and standards:

ISO9001:2008
ISO27001:2005
ISO22301:2012
Safe Harbor

For more info about Digitalocean's security visit digitalocean.com/legal/



PCI Compliance

Notism does not process, store or transmit credit card data. We work together with a globally recognized full payment provider Wirecard. When paying by credit card, Notism utilizes a separate PCI compliant system to manage all credit card and financial information. This allows us to ensure that the minimal number of employees have access to any sensitive data.



Application Security

Notism data is isolated per customer to prevent the entry of any customer from accessing another customer's data. Notism engineers utilize proven, up-to-date security technologies and techniques. Access to production systems and customer data is provided to employees on a 'least access' basis.



Transmission Security

All communications with Notism servers are encrypted by default using industry standard SSL. This ensures that all traffic between you and Notism is secure during transit.



Operating System Security

Notism uses the minimal number of access points to all production servers. All operating systems are maintained at recommended patch levels and are hardened by disabling and removing unnecessary users, protocols and processes.



Data Security

The customer owns all data entered in Notism. Notism employees do not have access to that data, except where necessary for system management, maintenance, monitoring, backups and support. Data is stored using RAID disks and storage clusters. Notism backs up customer data nightly to a secure, off-site location. Database connections are limited to only authorized internal networks.


Notism is provided through state-of-the-art cloud networks in a secure environment. Notism SaaS runs on a SSAE-16 compliant cloud infrastructure.



Reporting Security Problems

While we're very confident in our technology, we recognize that no system can guarantee data security with 100% certainty. For that reason, we will continue to innovate to make sure that our security measures are state of the art, and we will investigate any and all reported security issues. Send urgent or sensitive reports directly to security@notism.io. We’ll get back to you as soon as we can, usually within 24 hours.