Cappfinity Is committed to protecting your data
Maintaining confidentiality, integrity and availability of your data is as important to us as it is to you.
Maintaining confidentiality, integrity and availability of your data is as important to us as it is to you.
All customer solutions are subject to annual penetration testing by an independent 3rd party with CREST qualified security testers
Customer data and services are hosted through Microsoft Azure, and our services are load-balanced and replicated across multiple data centers. Microsoft Azure data centers and services are subject to industry standard compliance measures such as SOC1, SOC2, SOC3
All data in transit, or at rest is encrypted through industry standards – a minimum TLS1.2 in transit and AES256 at rest
Data is replicated across data centers and data backups are safely and securely stored offsite to enable point-in-time recovery
Web Application firewalls and DDOS protection
Security and vulnerability scanning and alerting across the infrastructure, applications, and databases
Data protection – you are the data owner, and Cappfinity will apply a data retention policy that works for your business
Single sign on support – Cappfinity supports industry standard identity providers, such as SAML, AAD, OpenID so that your users can SSO to Cappfinity
All Cappfinity employees complete security training every 2 weeks to maintain and improve security awareness and knowledge for all.
We also ensure that all Cappfinity suppliers adhere to industry-leading security controls, certifications and are subject to company checks.
