ZaapIT

Privacy, Security & Compliance

For: Smart-Tables / Smart-Mass-Update / Smart-Activity-Manager / DEDUP Manager

Compliance, Security, and Confidence:

• ZaapIT's apps are Force.com hosted applications, meaning they run on Salesforce's servers inside the same datacenter. The data center is fully managed by Salesforce, which includes the following: network security, app login, upgrades, change management, system operations, restricted personal access to the facilities, disaster recovery, availability, processing, and physical security.
• ZaapIT's code is compiled, stored, and runs on Salesforce's servers, as well as on the customer's local machine, specifically on the client side (using JavaScript, CSS, and HTML)
• ZaapIT's apps respect Salesforce's native permissions (object / field data access policies - view/create/update/delete/sharing permissions) & Salesforce's sharing mechanism.
• We do a Security Review at least once a year & we fix any known / reported security issue in a timely manner. 
• We manage our apps & licenses by using a self-managed license Salesforce intance.
• Access policy: ZaapIT doesn't have direct access to your Salesforce and your data - you can grant access to ZaapIT's support by going to Salesforce's setup>grant access>ZaapIT's Support or by going to My-settings>grant access > ZaapIT's support.
• Standards & compliance: ZaapIT apps are 100% native force.com apps, the apps comply with the ISO 27001 standard. The relevant Salesforce's force.com platform certifications (ISO 27001, Soc2 and  ) applies to any 100% force.com app and force.com code are attached. The certifications, a Screenshot of the certifications.
• SAS-70 type II compliant and GDPR compliant 
• Salesforce Government Cloud + Salesforce Government Cloud Plus certified more details

Data & Privacy: