Security & Compliance
Effective Date: May 10th 2020
Evvnt is committed to the highest levels of trust, transparency, standards conformance, and regulatory compliance. See an overview of Infrastructure sub-processors certifications:
Organisation name: Evvnt Ltd
Event Calendars & Consumer Search – Algolia
Code Base – Atlasssian
Data Centers & Hosting – Heroku & AWS
Security Assessments and Compliance Data Centers
Heroku’s physical infrastructure is hosted and managed within Amazon’s secure data centers and utilize the Amazon Web Service (AWS) technology. Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Amazon’s data center operations have been accredited under:
- ISO 27001
- SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
- PCI Level 1
- FISMA Moderate
- Sarbanes-Oxley (SOX)
Accounting & Finance – Xero
Xero is certified as compliant with ISO/IEC 27001:2013 which is globally recognized as the premier information security management system (ISMS) standard. Xero achieved certification by developing and implementing a robust security management program, including a comprehensive Information Security Management System (ISMS).
Xero has produced a Service Organization Control (SOC 2) report. The report is the result of an independent auditor’s examination of Xero’s cloud based accounting system relevant to the Trust Services Criteria for Security, Availability, and Confidentiality.
Xero complies with the Payment Card Industry Data Security Standard (PCI DSS). We’re a level 3 merchant and outsource our credit card processing functions to PCI DSS-compliant level 1 service providers. Xero is compliant with PCI DSS v3.2, SAQ A.
Customer Service – Zendesk
Compliance Certifications and Memberships – Zendesk use best practices and industry standards to achieve compliance with industry-accepted general security and privacy frameworks, which in turn helps our customers meet their own compliance standards.
Want more information?
- Terms of Service: https://evvnt.com/terms/
- Data Processing Agreement: https://evvnt.com/data-processing-agreement/
- CCPA: https://evvnt.com/ccpa/
- Infrastructure Sub Processors: https://evvnt.com/infrastructure-sub-processors/
- Security & Compliance Guide: https://evvnt.com/security-and-compliance-guide/
- Data Request Form: https://evvnt.com/data-rights-request-form/
- Or Contact firstname.lastname@example.org