Security is at the heart of every product decision we make. We've designed our security policies and procedures so that you can focus on what you do best — running your business.
Access to data within the app is governed by permission levels. Permissions can be configured to define granular access privileges (owner, admin, member). With regard to payments, we do not store any of your credit card information on our servers.
The company provides a variety of security measures, both technical and physical. Such security measures also includes policies and procedures, as well as ensuring that the employees are kept well-trained and informed.
Information Security Policy
SoldoutNight adopts a policy for the employees and contractors to follow. It ensures best practice and we review and update it regularly.
Employee Awareness Scheme
The company provides training for the security awareness of every employee on a regular basis. It is delivered by the security team and is role-specific and tailored in accordance to our company and the services that we provide. Such training includes policies based on GDPR. The company also insures that there are security bulletins and emails sent to all employees. All employee contracts include a confidentiality agreement.
We implement role-based access control to ensure that people only have access to data required for their job. Data in storage systems are not publicly accessible unless used for serving of public assets (e.g. images, scripts), or accessed by the authorized user via the website.
Both our application and our support services have a variety of controls to ensure that our services remain constant if a negative event were to occur.
The company’s offices are all protected with a variety of measures that includes 24/7 security guards and CCTV.
We review all our data sub-processors to ensure that they maintain the high standard of security you’d expect for your data.