Security at Factorial

Keeping our customers' data secure is our highest priority.

This security page provides a high-level overview of the security practices put in place to achieve that objective.

Factorial has established an Information Security Management System in accordance with the requirements of the ISO/IEC 27001 standard to guarantee the continuity of information systems, minimize the risk of damage and ensure compliance with the objectives set, which can be found here:

[/security-policy](Security Policy )

Data Protection

Factorial takes data protection very seriously, and it is compliant with GDPR, UK-GDPR, LGPD, CCPA and LFPDPPP.

Factorial's Data Processing Agreement (DPA)

Data Protection Officer (DPO)

Data breach policy at Factorial

How do I report a security issue to Factorial?

Certifications

To show our commitment to protecting customer data, Factorial has invested in obtaining and maintaining certifications in the following standards:

ISO/IEC 27001:2023

SOC2 Type I & II

ENS (Esquema Nacional de Seguridad) HIGH level

Product Security

Factorial makes sure its platform complies with world wide recognized information security standards:

Cloud infrastructure

Network-level security monitoring and protection

Data encryption

Data retention and removal

Application security monitoring

Secure development

User protection

Payment information

Internal Security

At Factorial we make sure to implement internal policies and protocols to comply with internationally recognized security standards.

Account security

Physical security

Trainings

Background checks

Service Level Agreement

This Service Level Agreement ("SLA") governs the use of Factorial under the provisions of the Terms of Services.

Uptime

Backups, Disaster Recovery and Business Continuity

Service Credits

Credit Request and Payment Procedures

SLA Exclusions

Agreements and terms

Hereunder you will find the aplicable agreements and terms regulating your relationship with Factorial

Privacy Policy

Terms and Conditions

Confidentiality

Factorial and the customer undertake to keep reserved and confidential the existence and content of all documentation and information that is provided, transmitted or disclosed, undertaking not to make any disclosure without the prior written authorization of the other party.

What does Factorial consider Confidential Information?

How long will the duty of confidentiality last?

What would happen if the duty of confidentiality was breached?

Certificates and security protocols

All our customer data is stored on the servers of Amazon Web Services (AWS) servers in Germany, a set of web services in the cloud that guarantee maximum security.

The Amazon Web Services data center is defended by three physical layers of security. Likewise, the facilities are protected against impacts and are only accessible through a non-transferable personal card and pin.

Do you have any questions or feedback?

Feel free to reach out at [email protected]

Help us stay secure

If you’ve discovered a security vulnerability in our platform, we encourage you to report it responsibly through our official program on HackerOne.

[https://hackerone.com/94fd9cb5-0b38-4b47-bb78-c6372420c76e/embedded_submissions/new?locale=en](Report a vulnerability

)