Security
Boardeaser is used by banks and listed companies that have the highest requirements regarding information security. Frequent security audits and strict routines ensure that you can trust our platform to handle confidential and business-critical information.
Login and authorization
- Login security with BankID in Nordic countries
- Internal and isolated authorization levels
- Optional two-factor authentication
- Optional USB-key with Yubikey
Encryption and penetration testing
- All data traffic is encrypted
- All files are encrypted according to industry standards
- Regular, automatic penetration testing
- Manual penetration testing carried out by security consultants.
Privacy
- Personal data protection compliant with GDPR
- All Boardeaser staff members are bound by confidentiality agreements
- All Boardeaser staff members undergo screening
- Boardeaser's physical premises are well-secured on multiple levels
Backups and traceability
- Automatic backups and regular backup tests
- Possibility for customers to run manual backups
- Extensive activity log
- Traceability in accordance with banking standards
Secure and trusted infrastructure
All data in Boardeaser is managed and stored within the EU. We only work with trusted parties and certified information management systems. Our platform uses two of the world’s largest providers of data infrastructure – Amazon Web Services (AWS) and Heroku. The suppliers ensure availability, backup, updates, 24/7 monitoring, firewalls, security zones and large parts of our security follow-up.
Certifications
AWS holds certification in accordance with ISO/IEC 27001, 27017, 27018 and 9001.
Read more on Amazon’s website.
Heroku holds certification in accordance with ISO 27001, 27017, 27018 and SOC 1, 2 and 3. Read more on Heroku’s website.
