HAAS Alert Trust Center

Our organization holds several key certifications, including ISO 27001, SOC 2, ISO 9001 and GDPR which demonstrate our commitment to security and regulatory compliance.

Our data retention policy specifies the duration for which we retain information, after which it is securely deleted or anonymized. The retention period varies depending on the type of information and regulatory requirements.

‍

We use industry-standard encryption methods, such as AES-256 for information at rest and TLS for information in transit, to ensure the highest level of security for information.

We conduct thorough due diligence and regular security assessments of our third-party vendors and partners to ensure they meet our security and compliance standards.

Our Chief Information Security Officer (CISO) oversees the information security program, supported by a dedicated security team responsible for implementing and maintaining security controls.

Our cloud services are secured through multi-layered security architecture, which includes data encryption, regular vulnerability assessments, and compliance with industry standards like ISO 27001 and SOC 2.

Customers can request access to the deletion of their information by contacting our Data Protection Officer (DPO).

Our key security policies and procedures are available in the Trust Center for review. For detailed documents, contact our security team.

We do not share customer information with third parties without the customer's consent.

We provide regular security awareness training for all employees, enforce strict access controls, and conduct periodic audits to ensure adherence to our security policies.

Yes, customers can request copies of our latest compliance reports by contacting our compliance team through the Trust Center contact form at the bottom of this page.

For more information, you can contact our security team through the Trust Center contact form or reach out to specific departments like compliance, privacy, or security through their respective contact information provided in the Trust Center.

We have a dedicated incident response team that follows a structured incident response plan to quickly identify, contain, and remediate security incidents. We also notify affected customers promptly in accordance with our incident response policy.

We implement a comprehensive set of security controls, including encryption, access controls, intrusion detection and prevention systems, and regular security assessments to protect customer information.

We adhere to GDPR requirements by implementing strict information protection policies, ensuring information subject rights, conducting regular information protection impact assessments, and appointing a Data Protection Officer (DPO).

We undergo multiple external audits at least throughout the year to maintain our compliance certifications and ensure that our security practices meet industry standards.

Our risk management approach involves identifying, assessing, and mitigating risks through a structured risk management framework, regular risk assessments, and continuous monitoring.