Built with security in mind

Best practices

Sparkbay is developed by following all best practices, including all those recommended by OWASP, the leading safety organization. Our servers are ISO-27001 compliant and we also respect all important principles, including those of the GDPR. Sparkbay strives to provide 24/7/365 service.

State-of-the-art Data Centers

Sparkbay's physical infrastructure is hosted and managed within Microsoft's state-of-the-art Azure data centers, trusted by companies such as eBay, Samsung, Apple iCloud, and Boeing. Microsoft design and manage the Azure infrastructure the following standards:

  • ISO 27001


  • FedRAMP

  • SOC 1

  • SOC 2

Backed up data

Backups are carried out every day in order to make absolutely sure we will not lose your data! Should the unexpected occur, we can always restore your data to a point within the last 24 hours.

Leading Encryption

When your data is stored on our servers, an AES-256 encryption algorithm ensures that it is only readable by us.

Secured communications

We use TLSv1.2 with a 2048-bit RSA key to encrypt your communications using AES_256_GCM, which guarantees that your data is protected between your computer and our servers.

We take your privacy to heart

Access control

The platform uses a user access control system. The different roles in this system include regular users, technical administrators, and managers who have access to reports.


You can use passwordless email authentication, and never set a service-specific password.


The platform does not give access to the communication contents of individual users; all the information is presented in the form of aggregated anonymous reports. The responses to surveys always remain anonymous. Sparkbay shows any survey-related information in an aggregated form.