Our Commitment to Security

Clearspeed helps our clients assess risk to make better, faster decisions at scale, and trust is a critical requirement. Your trust is our number one priority.

Our Commitment in Practice

Clearspeed is committed to the security of our clients and their data. As a cloud-based company, we are focused on keeping you and your data safe. We encrypt all sensitive data in use, at-rest and in-transit. Clearpseed undergoes regular penetration testing and security audits, designed to meet SOC 2 audits, ISO 27001 and GDPR-compliance requirements, and beyond. This commitment to security is ingrained in our culture.

Encryption

All Clearspeed corporate and client data is encrypted in transit with TLS 1.3. Data is encrypted at rest with AES

Data Handling

Clearspeed is in compliance with major data security regulations including GDPR and California Data Protection Act

Security Threat Detection

Clearspeed employs a number of cybersecurity threat detection solutions including, but not limited to: Endpoint Detection and Response, Next Generation Anti-Virus protection, Mobile Device Management, and password management tools

RBAC

Clearspeed maintains role-based account access workflows to ensure only authorized users have access to data and systems

Secure Hosting

Clearspeed’s cloud environments are backed by AWS’ security measures

Continuous Security Commitment

Information Security Program

Clearspeed maintains an information security program that is communicated and in practice throughout the organization. Our information security program follows the criteria set forth by ISO 27001, SOC 2, and NIST 800-171.

Security Awareness Training

Our team members are required to go through regular employee security awareness training covering industry standard practices and information security topics such as phishing and password management. Additionally, we run on-going phishing tests on our team to keep their awareness skills sharp.

Continuous Monitoring

We continuously monitor our security and compliance status to ensure there are no lapses.

Roles and Responsibilities

Roles and responsibilities related to our information security program and the protection of our clients’ data are well defined and documented.

Approved IT Systems and Security Procedures include:

  • Personnel Background Checks
  • Annual Policy Acceptance 
  • Personal Device Security (BYOD)

Third-Party Audits

As part of our commitment to security, Clearspeed undergoes routine independent third-party assessments to test our security controls. We also perform an independent third-party penetration test at least annually to ensure that the security posture of our services is uncompromised.

Transparency

As part of our transparency to our clients, Clearspeed makes our Privacy Policy readily available on our website.

Read our Privacy Policy