Skip to main content

Data and systems security notice

Data and systems security notice

Communications between your computer and 1000minds are always encrypted.

Keeping your data secure also depends on you maintaining the security of your account by using a sufficiently complicated password and storing it safely. You should also ensure that you have sufficient security on your computers.

1000minds has a responsible disclosure policy.

Operating environment and application security

The server environment is kept up-to-date with current versions of software and security patches. Data is encrypted in transit and at rest, and encrypted backups are stored geo-redundantly. Our software engineers use best practices and industry-standard secure coding guidelines. Third-party whitebox penetration tests are used to evaluate and improve the security of our applications and environment.

Our services use Microsoft Azure in the US and in Europe. Microsoft Azure meets a broad set of international and industry-specific compliance standards, such as ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2, as well as country-specific standards including Australia IRAP and UK G-Cloud.

When you sign up, you may choose to have your data stored in either the US or in Europe. If you wish, you can create an account in both regions; note that the regions operate independently and data cannot be transferred between them.

Our logs record your use of 1000minds for security, troubleshooting and internal audit purposes. These logs are also stored and processed securely.

Confidentiality agreements

You can trust us to keep your data confidential. If you want to, we’re happy to enter into a contractual agreement to guarantee the confidentiality of your information in 1000minds.

Back to top