We take information security very seriously and use information security best practices across the entire stack, from infrastructure to code. To ensure that your data is as safe as possible.
FusionReactor provides real-time visibility and alerting of application performance issues and can be effectively used across the whole Software Development Life Cycle. Thousands of customers trust FusionReactor to monitor their applications, enabling them to identify and respond faster to performance and stability problems. FusionReactor’s aim is to ensure applications run at peak operational and business performance.
FusionReactor works like this;
Our employees are required to conduct themselves in a manner consistent with the company’s guidelines, including those regarding confidentiality, business ethics, appropriate usage, and professional standards. All newly hired employees are required to sign confidentiality agreements and to acknowledge the Intergral code of conduct policy. The code outlines the company’s expectation that every employee will conduct business lawfully, ethically, with integrity, and with respect for each other and the company’s users, partners, and competitors. Processes and procedures are in place to address employees who are on-boarded and off-boarded from the company.
Employees are provided with security training as part of new hire orientation.
FusionReactors’s servers, applications, datastores and services are hosted on the AWS (Amazon Web Services) platform in facilities compliant with leading security standards including; PCI DSS Level 1, ISO27001, ISO27018, ISO 9001, SOC1, SOC2, SOC3 and many more. For more details, please see the AWS compliance programs and the AWS Security Whitepaper.
ISO 27001 – Our data center and payment providers are all ISO 27001 compliant.
SOC 2 – Our data center and payment providers are all SOC 2 compliant.
PCI – We are PCI certified to take credit card payments, and the associated data. We follow PCI best practices with regard to the encryption and transmission of credit card information and do not store this information on our servers.
Our data center, identity management and payment providers are all PCI DSS Level 1 certified.
HIPAA – FusionReactor is designed to be functional and secure, but not specifically for compliance with HIPAA regulations. There is overlap between our security and HIPAA’s requirements, but not complete overlap. Since we have no way to determine if your application data contains PII, we have to place the responsibility on you. This means that it is not feasible for us to take legal responsibility for your PII and we cannot sign a BAA.
If HIPAA compliance is a requirement, please consider carefully if FusionReactor is an appropriate service. We’d be happy to talk in more detail if you have questions about the possibility of using FusionReactor safely in a HIPAA-covered environment. Notably, if the focus is on application behavior and performance and data has been de-identified or anonymized, HIPAA compliance may not be required and FusionReactor may be able to serve your needs.
We are GDPR compliant. See our GDPR page for more information about the steps we’ve taken to reach compliance as well as resources for understanding GDPR.