Security at Factorial

Keeping our customers' data secure is our highest priority. This security page provides a high-level overview of the security practices put in place to achieve that objective. Factorial has established an Information Security Management System in accordance with the requirements of the ISO/IEC 27001 standard to guarantee the continuity of information systems, minimize the risk of damage and ensure compliance with the objectives set, which can be found here:
Data Protection
Factorial takes data protection very seriously, and it is compliant with GDPR, UK-GDPR, LGPD, CCPA and LFPDPPP.

Factorial's Data Processing Agreement (DPA)

Data Protection Officer (DPO)

Data breach policy at Factorial

How do I report a security issue to Factorial?

Certifications
To show our commitment to protecting customer data, Factorial has invested in obtaining and maintaining certifications in the following standards:

ISO/IEC 27001:2017

SOC 2 type I & II

Product Security
Factorial makes sure its platform complies with world wide recognized information security standards:

Cloud infrastructure

Network-level security monitoring and protection

Data encryption

Data retention and removal

Application security monitoring

Secure development

User protection

Payment information

Internal Security
At Factorial we make sure to implement internal policies and protocols to comply with internationally recognized security standards.

Account security

Physical security

Trainings

Background checks

Service Level Agreement
This Service Level Agreement ("SLA") governs the use of Factorial under the provisions of the Terms of Services.

Uptime

RTO and RPO

Service Credits

Credit Request and Payment Procedures

SLA Exclusions

Agreements and terms
Hereunder you will find the aplicable agreements and terms regulating your relationship with Factorial

Privacy Policy

Terms and Conditions

Confidentiality
Factorial and the customer undertake to keep reserved and confidential the existence and content of all documentation and information that is provided, transmitted or disclosed, undertaking not to make any disclosure without the prior written authorization of the other party.

What does Factorial consider Confidential Information?

How long will the duty of confidentiality last?

What would happen if the duty of confidentiality was breached?

Certificates and security protocols
All our customer data is stored on the servers of Amazon Web Services (AWS) servers in Germany, a set of web services in the cloud that guarantee maximum security.The Amazon Web Services data center is defended by three physical layers of security. Likewise, the facilities are protected against impacts and are only accessible through a non-transferable personal card and pin.
Do you have any questions or feedback? Feel free to reach out at gdpr@factorial.co