Our clients entrust Boardfolio with some of their most valuable information, therefore ensuring your data is secure and protected on our board management portal is one of the most crucial responsibilities we have. Boardfolio takes a broad and uncompromising approach to security and we have implemented a multi-layer defence framework to safeguard your data in our portal.
Boardfolio protects your data using sophisticated cryptographic models. Our encrypted board management portal ensures the confidentiality and integrity of your communications, data, and files.
Boardfolio protects every file and resource using a multi level encryption framework together with industry-accepted encryption algorithms and standards. Sharing and accessing of files is protected by both access control and user's unique decryption key.
Data transiting to and from Boardfolio's servers is encrypted using secure SSL/TLS-protected channels. All client data at rest is secured using the Transparent Data Encryption (TDE) mechanism.
Boardfolio is designed and developed with security considerations from the ground up. Security reviews, which leverages automated code scanning tools, as well as manual reviews, are implemented as part of the software development process.
Regular penetration tests are performed on Boardfolio by 3rd party cybersecurity experts and we ensure no high-risk component is ever released to the client production environment. Board portal security will always be a priority.
The application enables clients to have complete control over their data. Administrators can manage user accounts, delegate rights and assign roles and permissions. Spaces, board packs, and files can be granted specific access privileges.
Boardfolio is hosted in highly secure, ISO 27001 certified data centres in the Netherlands. Your data on our board portal is managed under widely adopted security processes and standards for commercial Information Security Management Systems.
Physical access to our data centres is protected 24x7 by advanced, multi-layered security systems which include documented security policies and procedures for access, round-the-clock onsite security officers, CCTV surveillance, motion detection as well as biometric access control card readers.
Boardfolio's infrastructure has built-in high availability, consisting of failover mechanisms in the unlikely event of hardware and component failures. Redundancy is built into all aspects of our infrastructure to ensure reliability of service and prevent data loss.
Praxonomy shares the belief that privacy is a fundamental human right, therefore we have built strong security and privacy in the very fabric of our board management solution. We secure your most valuable information. We continuously strive to achieve the highest security standards in our board portal.
Praxonomy is transparent about lawful data requests we receive from third parties and how we handle them. We publish the details here.
Boardfolio is fully compliant to the strict data protection laws of the European Union and we are committed to helping clients fulfil their relevant obligations of GDPR.
In light of this Cure53 black-box security assessment, it can be stated that the Praxonomy application makes a rather positive, robust impression.
Praxonomy is ISO 27001 certified. ISO 27001 is one of the most widely recognised and internationally accepted information security standards that sets out requirements for an information security management system.
ISO9001 specifies requirements for a quality management system. The certification requires Praxonomy to demonstrate the ability to consistently provides products and services that meet customer and regulatory requirements.
Boardfolio is fully compliant to the requirements set out in The General Data Protection Regulation 2016/679 and we are committed to helping clients fulfil their relevant obligations of GDPR.
The company employs formal operating procedures, controls and well-defined roles and responsibilities over all aspects from development, testing, deployment to post-deployment monitoring to ensure continued data security and integrity. System and configuration changes can only be performed by authorised engineers under strict control measures.
Praxonomy appoints independent security experts to perform regular and in-depth security audits. We also employ internal processes to ensure that our security measures are properly implemented and in accordance with industry best practices.
On top of our high availability and redundant infrastructure, the system is backed up at regular intervals to ensure uninterrupted service availability.
An in-depth look at Praxonomy's approach to security and compliance, including details on infrastructure, application design, cryptography, organisational and technical controls.Download Now