Security
peopleHum is committed to protecting your organization’s data from security threats, whether internal or external. We are ISO certified, ISO/IEC 27001, the most widely recognized information security standard in the world. The in-depth auditing process required for ISO certification includes a systematic examination of risks and vulnerabilities and a comprehensive plan of information security controls.
Architectural security
Keeping your data safe is job number one for peopleHum. You have the control and we provide the platform. This means you control all setup and configurations. Because you control your data—and we only process it with encryption storage standards for critical personal identifiable and password information—you are in completely safe hands with peopleHum
Physical security
peopleHum is hosted on Amazon Web Services’ ISO 27001 Certified, SSAE18, FEDRAMP, and PCI DSS Level 1 compliant data centers. For more information please visit: https://aws.amazon.com/compliance/data-center/controls/
Continuous security management and monitoring
All platform usage is monitored for multiple aspects including logs, system usage, memory utilization, traffic, system throughput, and latency. These monitors are enabled as provided by the AWS HA (High Availability) suite for application hosting and other tools both industry and custom/ proprietary monitoring tools.
Customer data segregation
Every customer’s data is logically separated using unique system generated customer identifiers. The platform is built ground up for multi-tenancy and no customer can view any other customer’s data. Period. The data privacy protection features within an account are managed by user entitlements and permissions allocation based on group identification.
Robust Privacy Program
The peopleHum Privacy, Ethics, and Compliance team, manages the privacy program and monitors its effectiveness. The team is responsible for:
Formulating, maintaining, and updating our internal privacy policies, procedures, and tools to protect the privacy of personal data handled by employees and partners on behalf of peopleHum
Monitoring compliance with our customer-facing privacy policies, which are audited annually by a third party
Ensuring that privacy commitments made to our customers, partners, and employees are met
Maintaining our certifications and regulatory-compliance obligations
Training peopleHum staff on our privacy program, monitoring changing data privacy laws across the globe, and making necessary updates and modifications to our privacy program