Built with security in mind
Best practices
Sparkbay is developed by following all best practices, including all those recommended by OWASP, the leading safety organization. Our servers are ISO-27001 compliant and we also respect all important principles, including those of the GDPR. Sparkbay strives to provide 24/7/365 service.
State-of-the-art Data Centers
Sparkbay's physical infrastructure is hosted and managed within Microsoft's state-of-the-art Azure data centers, trusted by companies such as eBay, Samsung, Apple iCloud, and Boeing. Microsoft design and manage the Azure infrastructure the following standards:
ISO 27001
HIPAA
FedRAMP
SOC 1
SOC 2
Backed up data
Backups are carried out every day in order to make absolutely sure we will not lose your data! Should the unexpected occur, we can always restore your data to a point within the last 24 hours.
Leading Encryption
When your data is stored on our servers, an AES-256 encryption algorithm ensures that it is only readable by us.
Secured communications
We use TLSv1.2 with a 2048-bit RSA key to encrypt your communications using AES_256_GCM, which guarantees that your data is protected between your computer and our servers.
We take your privacy to heart
Access control
The platform uses a user access control system. The different roles in this system include regular users, technical administrators, and managers who have access to reports.
Authentication
You can use passwordless email authentication, and never set a service-specific password.
Anonymity
The platform does not give access to the communication contents of individual users; all the information is presented in the form of aggregated anonymous reports. The responses to surveys always remain anonymous. Sparkbay shows any survey-related information in an aggregated form.