Security and Compliance Guide

Security & Compliance

Effective Date: May 10th 2020

Evvnt is committed to the highest levels of trust, transparency, standards conformance, and regulatory compliance. See an overview of Infrastructure sub-processors certifications:

Organisation name: Evvnt Ltd
Reference: ZA754675

Event Calendars & Consumer Search – Algolia

Code Base – Atlasssian

Data Centers & Hosting – Heroku & AWS

Security Assessments and Compliance Data Centers

Heroku’s physical infrastructure is hosted and managed within Amazon’s secure data centers and utilize the Amazon Web Service (AWS) technology. Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Amazon’s data center operations have been accredited under:

Accounting & Finance – Xero

Xero is certified as compliant with ISO/IEC 27001:2013 which is globally recognized as the premier information security management system (ISMS) standard. Xero achieved certification by developing and implementing a robust security management program, including a comprehensive Information Security Management System (ISMS).

Xero has produced a Service Organization Control (SOC 2) report. The report is the result of an independent auditor’s examination of Xero’s cloud based accounting system relevant to the Trust Services Criteria for Security, Availability, and Confidentiality.

Xero complies with the Payment Card Industry Data Security Standard (PCI DSS). We’re a level 3 merchant and outsource our credit card processing functions to PCI DSS-compliant level 1 service providers. Xero is compliant with PCI DSS v3.2, SAQ A.

Customer Service – Zendesk

Compliance Certifications and Memberships – Zendesk use best practices and industry standards to achieve compliance with industry-accepted general security and privacy frameworks, which in turn helps our customers meet their own compliance standards.

 

Want more information?