Security is a top concern at Conscia and to ensure that our internal programs and policies are best in class as we protect your systems and data, we have completed our ISO 27001 certification.
Conscia does not collect or manage payment information as part of our product or services. However, Conscia provides integration with payment gateways including Stripe that are PCI Compliant.
Privacy by Designs holds that organisations need to consider privacy at the initial design stages and throughout the complete development process of new products, processes or services that involve processing personal data. Conscia was built from the ground up to ingest, enrich, persist, process, share data that is permissioned by the customer. Every event record and every profile record held within our data repository can be tagged as permissioned by the customer.
GDPR applies to any company established in the EU – whether or not the actual processing takes place in the EU, and to any company (not just in the EU) processing personal data belonging to EU subjects in relation to offered goods, services or monitoring behaviour.
CCPA went into affect January 1, 2021 and solely applies to organizations that conduct business in California. This gives consumers certain rights over their data, including what data you are collecting about them, whether this information is sold or disclosed and the right to say no such sale.
Security is applied at the record level through system tags that enable query time filtering to be securely enforced.
Data is encrypted in transit and at rest, and is completely segregated from other customer data.
Authentication built into data access through APIs as well as the admin user interface.
Role and team-based permissioning and authorization framework
Auditable logs of user activity as well as data ingest & export events