We maintain the highest standards of data privacy and security because we know your data is important to keep secure. Debrief undergoes regular security reviews, designed to be GDPR compliant, and encrypts data at rest and in transit.
Our customers entrust sensitive data to our care. Keeping it secure is our promise.
Debrief uses Amazon Web Services (AWS) for the hosting of staging and production environments. AWS data centers are monitored by 24×7 security, biometric scanning, video surveillance and are SOC 1, SOC 2, and SOC 3 certified.
Data is encrypted in-transit using bank-grade TLS 1.2. Data is encrypted at-rest using 256-bit encryption via native world class AWS capabilities.
Access to customer data is limited to authorized employees who require it to perform their job duties.
Security breaches will be communicated within 48 hours, and vulnerabilities are fixed ASAP.
Debrief employs staff responsible for reviewing, updating, testing and maintaining our security and privacy policy.
Software development and deployment at Debrief is managed by a secure process.
Data security is a top priority for Debrief. If you believe you’ve found a security vulnerability in Debrief’s service, please notify us and we will work with you to resolve the issue promptly.
If you believe you’ve discovered a potential vulnerability, please let us know by emailing us at security@getdebrief.com. Provide us with a reasonable amount of time to resolve the issue before disclosing it to the public or a third party. We aim to resolve critical issues within one week of disclosure.
Make a good faith effort to avoid violating privacy, destroying data, or interrupting or degrading the Debrief service. Please only interact with domains you own or for which you have explicit permission from the account holder.
While researching, we’d like you to refrain from:
- Distributed Denial of Service (DDoS)
- Spamming Social engineering or phishing of Debrief employees or contractors
- Any attacks against Debrief’s physical property or data centers
Customer data is stored in the United States
All data is persisted in a database that has transaction logging enabled and is fully backed up daily.
Debrief works with all modern browsers without any plugins.
If you want to chat with us about your specific needs, we're here to help. Please send us an email at support@getdebrief.com and one of our rockstar team members will reach out promptly.
All data is persisted in a database that has transaction logging enabled and is fully backed up daily.
