COMPANY

About us

Our mission

News & updates

Careers

Contact Us

SERVICE

Join beta

Benefits

Partnerships

API

Support

LEGAL

Privacy

Terms

Security

Contact us

33 Foley Street

Work.Life

London, UK

W1W 7TL

  • Facebook - White Circle
  • Twitter - White Circle
  • LinkedIn - White Circle

ICO number ZA516677

Security

 

Keeping all areas secure

Last updated: September 2019

 

We are taking data security and privacy very seriously. We recognise that we store and share information that is important to you. Below we are sharing information on our practices to give you confidence in how we secure the data entrusted to us.

If you have a suggestion as to how we can improve in that regard, email us as outlined in the disclosure procedure below.

How do we keep your data safe?

We structure our data according to the Information Commissioner's Office and comply with GDPR. We also protect your data and keep it private; that is, we don't use your data for any other purpose other than identifying your providers and communicate with them. We have an easy-to-read Privacy Policy that explains and outlines all the tools we use: https://monadd.io/privacy-policy

  • All communications between you, us and any third-party provider are encrypted so no one can listen in to what we are communicating to any party. 

  • Every piece of data stored in our database is encrypted using AES-256 the standard encryption algorithm used by the American federal government.

  • We pseudonymise your data wherever possible by removing any identifying info we don't need from our database.

  • We have an additional legally binding Data Transfer Agreement with service providers that maintains your confidentiality and limits them only to use your address information to update their records.

  • We back our data up regularly.

Why do I see that your app is not verified in Google?

We are upgrading our security layers and having them verified by an independent security partner, find more in our Google Security page.

How do you guarantee your communications via email are secure?

We implemented SPF (Sender Policy Framework), DKIM (DomainKeys Identified Mail) and DMARC (Domain-based Message Authentication Reporting & Conformance) permissions to ensure our email connections are secure, authenticated to avoid spoofing, forgery, and prevent spam.

Also, we use Transport Layer Security (TLS) that uses encryption to protect the transfer of data and information. 

Application Level Security

  • Account passwords are hashed. Our staff can't even view them. If you lose your password, it can't be retrieved—it must be reset.

  • We never let your information leave our zone of control; it is never included in any outgoing communication and is only accessible through dedicated interfaces through our web app.

Responsible Disclosure

If you discovered a vulnerability in the Monadd application, server, or any other part of our stack, please do not share it publicly. Instead, please submit a report to us by emailing us at disclosure@monadd.io.