Data and systems security notice

1000minds takes security seriously. We follow best practice security guidelines at all times.

Communications between your computer and 1000minds are always encrypted.

Keeping your data secure also depends on you maintaining the security of your account by using a sufficiently complicated password and storing it safely. You should also ensure that you have sufficient security on your computers.

1000minds has a responsible disclosure policy.

Operating environment and application security

The server environment is kept up-to-date with current versions of software and security patches. Data is encrypted in transit and at rest, and encrypted backups are stored geo-redundantly. Our software engineers use best practices and industry-standard secure coding guidelines. Third-party whitebox penetration tests are used to evaluate and improve the security of our applications and environment.

Our services use Microsoft Azure in multiple US zones. Microsoft Azure meets a broad set of international and industry-specific compliance standards, such as ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2, as well as country-specific standards including Australia IRAP and UK G-Cloud.

Our logs record your use of 1000minds for security, troubleshooting and internal audit purposes. These logs are also stored and processed securely.

Confidentiality agreements

You can trust us to keep your data confidential. If you want to, we’re happy to enter into a contractual agreement to guarantee the confidentiality of your information in 1000minds.