Our Commitment to Compliance
Our Privacy &
Compliance Guide
Your Privacy, Our Priority
DATA SECURITY
Privacy and Security
As a company, the scale and complexity of privacy regulations is certainly vast and challenging. The security of data in our product and infrastructure is our top priority. Our security and risk management team works according to industry standards and ensures that your data is safe. "Security is not just a technical feature; it's ingrained in our DNA and integrated into every SYMSON process.".
At SYMSON, we take compliance and security seriously. Our platform undergoes extensive and continuous monitoring to ensure that our high standards are met. Our product team adheres to the highest security standards to keep our customers' data secure. Compliance involves demonstrating how data is handled and being able to track and monitor all data. We are committed to providing the best standards of privacy and compliance to our customers.
SECURITY CERTIFICATION
We are SOC 2 Ready
"The American Institute of CPAs (AICPA) has developed SOC 2 to define criteria for managing customer data based on five trust service principles: security, availability, processing integrity, confidentiality, and privacy. At SYMSON, we design our features and integration platform to meet and exceed SOC 2 audit requirements, ensuring that our customers' data is handled with the utmost care."
PRIVACY COMPLIANCE
Data privacy is our priority
As a pricing platform, we handle large amounts of organizational and customer data. To do this with integrity and safety. Our platform is ready for, and supports GDPR regulations when it comes to handling and storage of your customer data and other sensitive information.
HEALTH AND SAFETY
We are HIPAA Compliant
SYMSON can execute business Associate agreements as a business associate with covered entitities and other BAs. SYMSON is HIPAA READY
Data Safety and Handling
SYMSON Partners with Microsoft’s Azure cloud to ensure you get the best security features possible. Azure Firewall is a cloud-native and intelligent network firewall security service that provides threat protection for your cloud workloads running in Azure. It's a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.
How SYMSON complies with GDPR
GDPR protects European Union data subjects’ fundamental right to privacy and the protection of personal data. SYMSON’s headquarters is based in the Netherlands and therefore SYMSON is born and raised with high standards when it comes to privacy, compliance and security of data.
GDPR POLICIES FOLLOWED BY SYMSON
1
Enhancing existing individual rights and creating new rights to be forgotten and to data portability
SYMSON can help clients execute requests of customer to delete their personal data, which can be stored in our application.
2
A right to erasure and the right to be forgotten
When customers change their privacy settings, we can help you change this in our software and data lake.
3
The right to receive personal data
Customers have the right to ask for their personal data and to receive this in a certain format. We can help you to gather this information and to send it to requested persons via API, calls, or the exporting capabilities of SYMSON
4
Businesses will need to implement effective user interfaces
Every company should offer a user friendly way to give customers access to their privacy information and give them the ability to see, change and delete these.
5
Enhanced rights to notice, access, rectification and to object to processing
Controllers have to provide data subjects with certain minimum information before collecting personal data. These disclosures included the identity of the controller, the purposes of processing, and any recipients of personal data.
6
Erasure and the right to be forgotten, means that you have to be able to remove data from (external) sources, such as databases, websites, content, (internal) search engines, etc.
Symson can be used to send the data to all the sources and if so, it will save all this data. It can be requested via API, or just by using the services for reporting and logging capabilities of Symson .
