Trust Center

Trust & Security

We care about protecting your personal and business information. We care how it is used and shared, and we take your privacy seriously. This is why at Growegy, we have strict policies to ensure your data doesn’t get in the hands of unintended third parties. This document lays out systems, processes, and practices we have put in place for data safety and security.

We do not store your customer’s data

Growegy helps customers to keep all marketing programs in one place and analyze its actual performance. E.g., we use CRMs (like Salesforce) to only get campaign performance information. We do not save your customer data from Salesforce for any account unless specifically requested by the account owner.

Data Center Security

Growegy is hosted entirely on Amazon Web Services (AWS) on US-based servers, providing end-to-end security and privacy features built in. AWS maintains an impressive list of reports, certifications, and third party assessments to ensure complete and ongoing state-of-the-art data center security. They have many years of experience in designing, constructing, and operating large-scale data centers. Review Amazon’s Security Center for more detailed information. We use AWS Cognito to authenticate users. Our team takes additional proactive measures to ensure a secure infrastructure environment.

Application Security

All Growegy web application communications are encrypted over 256 bit SSL. Growegy actively monitors ongoing security, performance and availability 24/7/365. 

Infrastructure Security

Growegy’s infrastructure is hosted in a fully redundant, secured VPN environment, with access restricted to operations support staff only. This allows us to leverage complete firewall protection, private IP addresses, and other security features.

Data Security

Our goal is to provide a secure environment, while also being mindful of application performance and the overall user experience. 

We require all sensitive data, both in transit and at rest to be encrypted using strong, industry-recognized algorithms. We regularly review all encryption algorithms in use to ensure that they follow the Advanced Encryption Standard. 

All encryption keys generated, stored, and managed by Growegy are created and stored in a manner that prevents loss, theft, or compromise. 

We practice least-privileged access for all of our systems and applications. This means that the only people with access to your account and data are Growegy employees that require access in order to fulfill their job responsibilities. 

We audit access regularly to ensure that the minimum number of individuals have access to your data. We believe in collecting the minimum amount of data needed to ensure your account is managed and secure. We do not collect your customer’s data by default.

Physical Security

Growegy is a cloud-based solution, with no part of our infrastructure retained on-premise. Our physical security in the offices include personal identification based access control, CCTV and alarm systems.

Growegy’s data centers are hosted on Amazon Web Services, where leading physical security measures are employed.

Security Awareness and Training

Growegy understands that its security is dependent on its employees. Therefore, all our employees undergo thorough information security awareness training during onboarding. Further security training is provided on a quarterly basis. Additionally, all employees must sign our Acceptable Use Policy.

Access Control

We know the data you upload to Growegy is private and confidential. We regularly conduct user access reviews to ensure appropriate permissions are in place, in accordance with the least privilege principle. Employees have their access rights promptly modified upon change in employment.

Contact Us

Please send your feedback, comments, and requests for technical support:

By email: support@growegy.com

 

© 2020-2024 Growegy. All rights reserved