Trust Center

Start your security review
View & download sensitive information
Ask for information
Search items
ControlK

Overview

Welcome to Shiftbase's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.

Compliance

GDPR Logo
GDPR
ISO 27001 Logo
ISO 27001
ISO 27001 SoA Logo
ISO 27001 SoA
Start your security review
View & download sensitive information
Ask for information

Documents

All
Public
Private
ISO 27001
ISO 27001 SoA
Responsible Disclosure
Service-Level Agreement

Risk Profile

Data Access LevelRestricted
Recovery Time Objective24 hours
Recovery Point Objective12 hours
View more

Product Security

Multi-Factor Authentication
Role-Based Access Control
Team Management

Reports

Pentest Report

Data Security

Backups Enabled
Data Erasure
Encryption-at-rest
View more

App Security

Responsible Disclosure
Web Application Firewall

Legal

SubprocessorsGoogle Cloud-company-logoCloudflare-company-logoAmazon Web Services (AWS)-company-logoSendGrid-company-logoSentry-company-logo
Data Processing Agreement
Privacy Policy
View more

Data Privacy

Privacy of customer data is top of mind. We follow industry best practices and follow all applicable privacy regulations.

Access Control

Access is tightly monitored and controlled at our company. We are happy to provide more details about our access control practices upon request.

Infrastructure

Status Monitoring
Anti-DDoS
Network Time Protocol
View more

Endpoint Security

We follow industry best practices for endpoint security. We are happy to provide more details about our endpoint security practices upon request.

Network Security

We protect our corporate network against external & internal threats.

Corporate Security

Penetration Testing

Policies

Access Control Policy
Backup Policy
Business Continuity Policy
View more

Security Grades

ImmuniWeb
Web Application
A
Qualys SSL Labs
Web Application
A+
Public API
A+
Website
A+
Security Headers
Web Application
B
Website
B

Trust Center Updates

New subprocessor

SubprocessorsCopy link

New subprocessor: Customer.io

In accordance with our obligations under Article 28 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (the ” GDPR”), we hereby inform you that we intend to involve new subprocessor(s) in the provision of our software solution.

Overview

Effective thirty (30) days after this notification, Shiftbase B.V. will start involving the following additional subprocessor(s) for delivering it's services.

Company nameHead OfficePurposeData Location
Peaberry Software Inc. d/b/a Customer.io9450 SW Gemini Dr., Suite 43920, Beaverton, Oregon 97008-7105.Product marketing & Transactional emailEU

The complete list of subprocessors involved by Shiftbase B.V. is also available at the following address: https://trust.shiftbase.com/?itemUid=e3fae2ca-94a9-416b-b577-5c90e382df57

Objection

If you object to Shiftbase B.V. contracting Customer.io as a new subprocessor for reasons related to data protection, please send an email to privacy@shiftbase.com with the subject "Subprocessor Objection", including the ground(s) for the objection. We remind you that, unless a longer period is agreed between us in the data processing agreement applicable between our companies, you have a period of fourteen (14) days following this notification to submit your objections. If no objections are received within set period, we will assume you consent to the involvement of Customer.io.

Published at N/A*

If you need help using this Trust Center, please contact us.

Contact Support

If you think you may have discovered a vulnerability, please send us a note.

Report Issue
Powered bySafeBase Logo