Go to start of metadatAlmarise is dedicated to respecting and protecting the privacy of its customers and partners (collectively referred to as "You" or "Your"). For details about our Privacy Statement, please refer to Privacy Policy. Ensuring the security of Your personal information is of paramount importance to us. Almarise employs robust technical and organizational security measures to prevent data loss, unauthorized access, or other improper data-processing activities.
Introduction
Almarise applications (“Almarise Apps”) are hosted and delivered by Amazon Web Services (AWS, referred to as "Cloud Providers"). While the Cloud Providers manage the physical security of their data centers, Almarise oversees the monitoring, management, and security of its applications.
Hosting Infrastructure
Our Cloud Providers are responsible for the physical infrastructure that hosts Almarise Apps. To learn more about their security practices, visit the following links:
Almarise applications are hosted in secure facilities within the United States and Europe.
Certifications and Compliance
The Cloud Providers follow high security standards and have been certified by third-party organizations for compliance with applicable laws and regulations. Details on certifications and compliance statements can be accessed here:
Atlassian Cloud Security Program: Almarise also complies with Atlassian's Cloud Security Program requirements, as detailed here: [https://developer.atlassian.com/platform/marketplace/security-requirements/].
Key Security Practices
Privacy Compliance: We periodically self-assess to verify that our handling of personally identifiable information (PII) aligns with our privacy statements.
Security Responsibilities: Customer configurations, password management, and adherence to best practices significantly influence the overall security of our products.
Incident Response: Almarise employs a comprehensive incident response plan to quickly address security threats and vulnerabilities.
Vulnerability Assessments: We conduct regular vulnerability assessments to proactively identify risks.
Access Management
Access to the production environment within Almarise is strictly limited to a small number of authorized team members for maintenance and customer support purposes. All access to Almarise Apps is logged and monitored. Customers are responsible for maintaining the security of their login credentials.
Multi-Factor Authentication (MFA): Almarise enforces multi-factor authentication (MFA) for access control.
Role-Based Access Controls (RBAC): Access to systems and data is governed by role-based access controls (RBAC), which ensure users have access only to the resources necessary for their role.
Data Protection
Encryption: Data at rest in Almarise Apps is encrypted using industry-standard encryption protocols.
Secure Transmission: All data transmissions with Almarise Apps are secured using HTTPS and TLS encryption.
Backup and Recovery
Customer data is securely backed up daily and encrypted to prevent unauthorized access. The Recovery procedures are regularly rehearsed according to known best practices.
Data Transmission and Risk Management
While we strive to protect your personal information, no transmission or storage system is 100% secure. If you believe your interaction with us is no longer secure, notify us immediately via the contact methods provided. We will promptly address any potential breach that may compromise your data.
Email Security: Email is a non-encrypted communication medium; avoid sharing sensitive information through it.
Security Limitations: Almarise is not responsible for outcomes caused by circumvention of security measures or misuse of privacy settings.
Contact Information
For security concerns or inquiries, please reach out via the following channels:
Email: [apps.security@almarise.com]
Support Portal: [apps@support.almarise.com]
We are committed to maintaining the highest level of security for our customers and partners.