INBOX is committed to maintaining the highest operational standards in systems and processes to protect personal data in accordance with good industry practices. At INBOX, we know that security is crucial to you and it is the reason why we are using industry-best standards and it is our top priority. For your information, we have provided the main aspects of our security practices below.
Data Protection
Our team works hard to ensure compliance with international law requirements. INBOX takes reasonable precautions, and technical and organizational security measures to ensure a level of security appropriate to the risk, and follows industry best practices in order to protect your data from any unauthorized or unlawful breach of security that leads to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of or access to information, and to preserve the security and confidentiality of the data. The implementation of the security layers protects user information using both server authentication and data encryption, ensuring that user data is safe, secure, and available only to authorized persons. All personnel employed in data processing have committed themselves to confidentiality and are instructed regarding confidentiality accordingly. However, despite best efforts, no method is perfectly secure. We cannot guarantee absolute security.
Certifications
Our services are hosted by a trusted and certified data storage center that is located in the European Union. Our data storage center has an information storage security certificate (ISO 27001). You can rest assured that your and your subscriber’s data is safe with us because our data center provides all the necessary security measures for data protection and processing.
Passwords and credit card information are always sent over secure, encrypted Secure Sockets Layer (SSL) connections. All payment information provided to INBOX is passed directly to its payment processors, and INBOX does not have access to it; INBOX does not need to be PCI compliant. Our payment processing vendors are Payment Card Industry Data Security Standard (PCI-DSS) compliant.
GDPR Compliance
The INBOX team worked hard and developed new features that helped us become GDPR-compliant. We have incorporated all the necessary controls and procedures for personal data processing security derived from the GDPR into our systems. You can find more information about the data we collect and how we do it in our Privacy Policy. Our clients can also review a Data Processing Addendum.
Technology
We deploy industry-standard protection techniques to provide maximum security to our users. All servers and computers have industry-standard anti-virus software installed, which is updated and continuously monitored to prevent unauthorized access to user data, network vulnerability scanning, network security monitoring, etc. We also make two-factor authentication available to our customers.
Organizational Security
INBOX continuously maintains and monitors notifications, errors, logs, and alerts on our services, and from all systems to identify and manage threats. Comprehensive security measures prohibit unauthorized access to data processing equipment. We also maintain internal information security policies, including incident response plans.
Data encryption
Data communications between the client and our application are protected via encrypted data channels HTTPS/TLS (Hyper Text Transfer Protocol Secure/Transport Layer Security) protocol. Data integrity is ensured by mirroring all data in two separate locations.
Dedicated security team
We have dedicated personnel to manage and monitor all our services and infrastructure 24/7. Our team focuses on network, and system security and has incident management procedures.
Your responsibilities
Keeping your data safe also depends on you ensuring that you preserve the security of your account, systems, and personal information. You should use sufficiently complicated passwords and store them safely.
Changes
INBOX reserves the right to change this Security Statement at any time. If we decide to change it, we will post these changes on this page so that you are always aware of how we ensure the security of your data. All changes are effective immediately upon posting.
Contacting INBOX
If you have any questions about our data security, please contact us any time via email: [email protected]
