Security

Securing Your Success: Trusted, Certified, Protected

At Custify, your trust begins with our commitment to your security and privacy.

Our Commitment to Security and Compliance:

SOC 2 Type 2 Compliance

SOC 2 Type 2 Compliance

Certified to manage, monitor and process your data responsibly.
ISO/IEC 27001 Compliance

ISO/IEC 27001 Compliance

Certified for high standards in information security, cybersecurity and privacy protection.
GDPR Compliance

GDPR Compliance

Meeting standards and requirements for securing and protecting data in the EU.

Trusted & Used by the Best CS Teams:

Our Commitment to Security and Compliance:

Robust Access Controls

Single Sign-On (SSO)

Enhanced organizational security with SSO capabilities to ensure only authorized access.

Role-Based Access Controls (RBAC)

Admins can fine-tune permissions, ensuring each user accesses only necessary data for their roles.

Advanced Data Protection

Data Encryption

We safeguard your data with AES-256 encryption at rest and TLS encryption in transit, keeping your information secure whether stored or sent.

Password Security

We enforce strong password policies and use encryption for hashing and encrypting credentials at rest to enhance protection.

Reliable Infrastructure

Data Hosting

Our servers are securely hosted on AWS in the United States (Ohio) or in the EU, Germany (Frankfurt). Based on request, data can be hosted only in the EU, and we can ensure our sub-processors do the same, ensuring reliable and compliant data management.

Penetration Testing

Custify conducts annual penetration tests with third-party security experts. These tests simulate advanced cyber-attacks to identify vulnerabilities, ensuring our defenses are robust and current. This approach helps maintain the highest security standards, safeguarding your data effectively.

Committed to Privacy

Privacy Protocols

We utilize robust privacy protocols, such as data minimization and anonymization, ensuring that only necessary information is collected and processed, safeguarding your personal data.

GDPR and More

Dive deeper into our commitment to upholding privacy laws on our Privacy Policy and GDPR Compliance pages.
Philipp Wolf - Founder & CEO, Custify
Philipp Wolf - Founder & CEO, Custify

At Custify, security is embedded in everything we do. I, along with the rest of our team, personally ensure that we treat your data with the utmost care, fostering a foundation of trust and transparency.

Philipp Wolf - Founder & CEO, Custify
Philipp Wolf - Founder & CEO, Custify

Frequently Asked Questions

During contract, default retention period is 24 months but we can agree on a different term. This is designed for your CS team to be able to track historical activity.

After contract: We delete data after contract termination, it can take up to 7 days.
Yes, data is encrypted when transmitted to Custify servers. We use SSL (Secure Sockets Layer) encryption to secure the data flow, ensuring that your information remains protected during transit. For a detailed view of how data travels, you can refer to our data flow chart.
Yes, data stored on our servers is encrypted at rest using AES-256 encryption, one of the strongest block ciphers available. This method secures your data with encrypted volumes, ensuring that your information is protected even when it is not being actively accessed or transmitted.
Custify will use all reasonable efforts to ensure a 99.95% uptime for its services each month, as verified by our system records. Should service availability drop below this threshold for more than two consecutive months, customers are eligible for a credit. This credit equals the prorated amount of the subscription fees for the downtime during those months. To receive this credit, customers must request it within 30 days after the affected months. This credit is the sole remedy offered for such downtime.
Custify collects personal data that is explicitly and voluntarily provided through our API, pulled from integrations, or entered manually by customers into Custify. This data typically pertains to customer success processes, involving both customer and employee information depending on the use case.
At Custify, access to your data is strictly limited to authorized personnel who have signed confidentiality agreements, ensuring they do not disclose any sensitive information during or after their tenure. Additionally, all employees undergo rigorous security training, including anti-phishing and fraud detection courses, to further safeguard your data.
Irina Vatafu - Head of CS at Custify
Irina Vatafu - Head of CS at Custify
Irina Vatafu - Head of CS at Custify
Irina Vatafu - Head of CS at Custify

Get started with Custify

A better experience for your customers, fewer headaches for your team.
You'll be set up in minutes.

Notice:

Notice: This website or its third-party tools use cookies, which are necessary to its functioning and required to achieve the purposes illustrated in the privacy policy. If you want to know more or withdraw your consent to all or some of the cookies, please refer to the privacy policy. By closing this banner, scrolling this page, clicking a link or continuing to browse otherwise, you agree to the use of cookies.

Ok