Like you, we take security seriously.
User security and your information
A minimal amount of personal information is collected when you register for a 1000minds account. Apart from your name and email address, how much you record is up to you.
Communications between your computer and 1000minds are encrypted by default. The login page allows you to disable this security protocol, but this is not recommended.
Keeping your data secure also depends on you maintaining the security of your account by using a sufficiently complicated password and storing it safely. You should also ensure that you have sufficient security on your computers.
Operating environment and application security
The server environment is kept up-to-date with current versions of software and security patches. Backups are encrypted and sent off-site on a daily basis. Our software engineers use best practices and industry-standard secure coding guidelines. Third-party penetration tests are used to evaluate and improve the security of our applications and environment.
Our data centre provider meets a broad set of international and industry-specific compliance standards, such as ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2, as well as country-specific standards including Australia IRAP and UK G-Cloud.
Our logs record your use of 1000minds for security, trouble-shooting and internal audit purposes. These logs are also stored and processed securely.
You can trust us to keep your data confidential. If you want to, we’re happy to enter into a contractual agreement to guarantee the confidentiality of your information in 1000minds.
Though our usual delivery model is Software as a Service (SaaS), for a negotiated fee, 1000minds can be installed on a client’s server if desired.
Please contact us if you have any questions.