Secure German data protection
You can rely on our data protection!
Data protection according to EU Data Protection Regulation (GDPR )
We want you to use easyfeedback without having to worry about data protection. For this reason, we explain here in an easy and understandable way how we actively implement the protection of your data and that of your participants.
The most important points at a glance:
Certified IT Security
- easyfeedback is TISAX-certified and therefore one of the few German survey tool providers with TISAX certification (TISAX = extension of ISO27001 with addition to the automotive industry)
- The contracted data centre, Cronon GmbH, and therefore your data, are also ISO27001 certified
As a survey tool provider, we offer you fully certified IT security.
Certified Server Location Germany (ISO27001)
- Our servers are and will remain in Germany and are located in the data centre of Cronon GmbH . We collect, store and process data exclusively in the aforementioned data centre and do not use any foreign servers or cloud services
- The data center, and therefore your data, is certified and protected according to ISO27001
- Maximum availability through emergency power generators, fire protection detectors, cooling and battery-supported, uninterruptible power supply.
- Redundant data center architecture makes failure virtually impossible.
- Advanced laser fire detectors and use of extinguishing gas.
- Policies, logging, authorization concepts and access restrictions secure access to the systems for unauthorized persons.
Data encryption from the start
- The customer login is secured with the SSL encryption method and thus your data, as well as the data of your participants, are protected from unauthorized persons.
- Every access of employees to data systems is encrypted and only possible for authorized persons.
- Each backup is fully encrypted and stored in a separate fire compartment.
- Every password and IP addresses of your subscribers are stored in a non-reverse-encryptable cryptic hash. Thus, no one can read your password and we never have IP addresses of participants stored on our servers at any time.
Maximum security for survey participation
- By default, every survey is secured with SSL encryption. This means that your participants’ answers are already transmitted in encrypted form and cannot be intercepted.
- Google & Co. have no access to surveys from easyfeedback and have to stay outside
- We do not store any IP addresses of your participants in readable form. After reading out the IP address, if activated by you, it is converted into a 32-digit non encrypted hash and only then stored on our servers.
- Anonymous participation as default setting for each survey. Personalization only takes place if you actively set it or ask for personal data.
Trained and committed employees
- All of our employees are trained on data privacy and know how to safely handle sensitive and personal data.
- All employees are committed to data secrecy and confidentiality.
- Our internal authorization concept allows only selected employees to access sensitive and personal data.
- Uniform guidelines apply to all employees on the private use of the Internet and email, as well as on the use of private end devices.
Only selected service providers
- Each service provider was checked in advance for the implementation of data protection and carefully selected.
- We have concluded an order processing agreement with each service provider and assign the same obligations to them as to us.
Maximum protection and security
- Each customer and user has access only to his data (multi-client capability).
- Regular vulnerability scans, application of patches and use of the latest equipment and software maintain the security standard.
- Daily backups (14-day retrospective) on a separate server in a separate fire compartment secure your data just in case.
- Complex password policies and changing rhythms on data processing data processing systems secure access from unauthorized persons.