Security
Security
At Glartek, our vision is to increase the efficiency and safety of industrial tasks performed by frontline workers. We go the extra mile to earn and maintain your trust and we are committed to your Information and Data Security.
Our Compliance - The strictest requirements and regulations.
ISO27001
Glartek is undergoing the ISO 27001 certification, the international standard for Information Security Management Systems (ISMS).
GDPR
We respect the EU’s General Data Protection Regulation, which outlines strict protections for consumer data, prioritizing integrity and confidentiality and limiting how organizations can handle data.
SOC 2 Type II
We build our products to be compliant with AICPA’s SOC for Service Organizations Trust Services Criteria (SOC 2).
Our Products - Manage user access and guarantee that Data is protected and available.
Access
Single Sign-on (SSO), Lightweight Directory Access Protocol (LDAP) and SAML to authenticate users in systems.
Enforce password complexity and expiration.
Configurable user access to data and features.
Customer Data
Industry leading standard protocols to protect data in transit (including TLS 1.2 and 256 AES encryption) and at rest (including FIPS 140-2 compliant encryption standards).
Data transfers within or between countries/regions respect the EU, Swiss, UK and CCPA legislations.
All user and device actions and Data changes are logged for audit purposes.
Availability
Redundant hosting partners providing 99.9% uptime SLAs.
Servers in separated infrastructure to prevent unauthorized access to/from our IT network.
All customer Data is backed up off-site at least on a daily basis.
Our Company - Engaged in cyber security continuous improvement.
We have appointed an experienced CISO full-time employee.
We regularly perform Processes, Policies and Procedures (3P) and Privacy Impact self-assessments.
We work with partners for independent company and product assessments, such as black-box penetration testing.
Our Employees
All employees undergo software development life-cycle security and awareness training annually.
All employee and partner contracts include confidentiality clauses.
All access to customer data is registered, logged and reported to the customer.
Contact Us
For further information, please contact Glartek’s security team by email at [email protected].