Security

boardcycle is a Software-as-a-Service (SaaS) platform built to be secure by design

Your Data

DATA SEGREGATION

Each customer's data is logically separated and isolated using a unique customer IDs for each record.

Is Encrypted

DATA ENCRYPTION

Strong encryption is used to protect all data in transit and at rest.
 
Encryption in transit is achieved using best-practice TLS (Transport Layer Security) which establishes an encrypted communication channel between end-user web browsers and the boardcycle platform.
 
Encryption at rest is achieved using AWS (Amazon Web Services) storage encryption. For more information about AWS security refer to the following documents:

Is Secured

PASSWORD MANAGEMENT

User passwords are never stored in clear text format. A strong cryptographic algorithm is used to generate irreversible strings known as password hashes. The algorithm also uses a unique long random value known as a salt, which is different for each user and ensures protection against attacks based on pre-computation of password hashes.
 
boardcycle supports the use of complex passwords and multi-factor authentication.
 
Single sign-on using your organisation's identity platform (for example Microsoft Entra ID) is also available (additional cost).

Is Protected

DATA INTEGRITY

boardcycle applies best-practice protections such as query parameterisation against web-based attacks including SQL injection, cross-site scripting and cross-site request forgery attacks.

Is Backed Up

BACKUP

Full point-in-time backups of all data are performed continuously. Backups are encrypted and stored in separate AWS data centres.

We're Proactive

EVENT MONITORING

boardcycle proactively monitors system operation to ensure system availability and integrity.

We're Secure

SECURE SOFTWARE DEVELOPMENT LIFECYCLE

Secure coding best practices are strictly followed at all points in the software development lifecycle.
 
Common application layer vulnerabilities, including all OWASP Top 10 vulnerabilities, are explicitly addressed at all stages using industry standard counter-measures, such as explicit sanitisation of all user input, use of parameterized queries, and use of secure libraries.
 
All code changes are controlled and must go through strict testing procedures prior to production deployment.

We're Careful

SUPPORT ACCESS

Access by boardcycle to customer data is highly restricted to boardcycle's most senior staff members.
 
All access to customer data by boardcycle staff is logged.

Ready for modern agenda management?

Ready to build and manage agendas faster and better? Ready for shell minutes in one click? Ready to focus on what really matters, and let us handle the rest? Then get in touch.

TALK TO US CHECK OUT OUR AGENDA TEMPLATE

Keep in touch

Sign up for regular updates on boardcycle.