The security of our customers’ information is our top priority. Each individual and team using Insycle expects their data to remain secure, confidential, and private. We recognize how crucial this is for our customers, and we strive to meet all three expectations to the best of our abilities.
Trust Center
Review our Trust Center to access the SOC 2 Type 2 report, Application Penetration Test report, Architecture Diagram, Cyber Liability Insurance, Policies, Monitoring, and related materials.
SOC 2 Type 2 Compliance
Insycle has successfully completed a System and Organization Controls (SOC) 2 Type II audit.
Developed by the American Institute of Certified Public Accountants (AICPA), the SOC 2 information security audit provides a report on the examination of controls relevant to the trust services criteria categories covering security, availability, processing integrity, confidentiality, and privacy.
A SOC 2 Type II report describes a service organization’s systems, whether the design of specified controls meets the relevant trust services categories, and assesses the effectiveness of those controls over a specified period of time.
Application Penetration Test
Insycle undergoes an annual application penetration test performed by reputable independent providers to ensure our platform’s security.
The full report and related details are available in our Trust Center.
Independently Verified SSL
Insycle app proudly holds an A+ Overall Rating from Qualys SSL Labs. A detailed SSL report is available here.
Encrypted Data in Transit
Insycle employs 256-bit AES, supports TLS 1.2 for all communications, and utilizes the ECDHE_RSA Key Exchange Algorithm. We closely monitor the output of the security community and promptly work to upgrade the service in response to new vulnerabilities as they are discovered.
Encrypted Data at Rest
All data written to disk is encrypted at rest using the AES-256 algorithm.
Data Use
Your data is used for the sole purpose of providing the Insycle app service to you.
Your data is stored in the Insycle platform in order to offer advanced data insights, for example, identifying duplicates and poorly formatted names, etc.
Your data is not shared with or transferred to any third party, except for the Sub-Processors that provide hosting, security, support, and notification services required to provide the Insycle service.
Secure Physical Location
Our servers are located in Google Cloud Platform data centers that have completed ISO 27001, SSAE-16, SOC 1, SOC 2, and SOC 3 certifications. You can review Google's information, which explains its security and compliance measures.
Status Page
We provide real-time updates and historical data on system status via the Status Page.
More Information
For more information, please review our Security, Privacy Policy, Terms of Service, Data Processing Agreement, and related material under Legal on our website. These are living documents and we update them as our service evolves and industry practices change.