Security is our #1 priority
Security is one of the most important criteria for selecting a deal flow tool. Due to the sensitive nature of the information stored on our platform, your security is of paramount importance. Thanks to our comprehensive security features, we are currently trusted by several big banks, sovereign funds and Fortune 500 companies.
Zapflow's application design covers security at multiple layers
Data security
All data in Zapflow is encrypted at all times when stored, including all database entries, attached documents and emails. The data is stored encrypted in the Amazon Web Services (AWS) RDS service. All documents and email attachments are stored in AWS S3 in an encrypted bucket. The encryption keys are managed by AWS KMS. All customer files are scanned for viruses within the AWS S3 with AWS Lambda antivirus feature. AWS provides services that comply with the highest security standards in the industry, including SOC 3, PCI DSS Level 1 and MTCS Level 3.
Network security
Any network traffic in and out of Zapflow servers will always be transported over encrypted network protocols: SSL, WSS and SSH. The application servers are hosted in a Virtual Private Cloud (VPC) and only the internet facing application servers are exposed through a firewall and load balancers. The databases and application servers are protected by firewalls. The firewalls only allow access to dedicated ports and protocols required by the application architecture.
Privacy and visibility
Zapflow pays the utmost attention to our customers’ data privacy and visibility. Access privileges to the data are managed and checked on four levels: input data validation, database queries, business logic and upon data serialization. In addition to that, role-based authorization privileges are checked upon every request to our application servers.
Automated audit logs
All requests to the Zapflow application servers are logged and logs are stored and encrypted on the AWS S3 service. An object-level change timeline is provided for select objects.
Internal data access
Zapflow also has controls in place to allow temporary access to customer data by authorized employees only to satisfy special customer requirement or business need.
Uptime and durability
The AWS RDS Database is configured with a multi-zone hot swap replica. The automated backups are stored daily and in multiple locations. Zapflow uses third-party tools to monitor service availability worldwide and our personnel is automatically notified of any outages.
Virtual private network
The Zapflow AWS application servers are protected by firewalls and only the internet facing servers can be accessed via SSL and WSS protocols. Any other access to our servers is limited to VPN. Access to the VPN is given only to our DevOps team and is only allowed with public key authentication.
Two-factor authentication
Zapflow AWS access policy requires all users to use Two-factor authentication (2FA) to log in to Zapflow Amazon Web Services accounts. 2FA can also be integrated into customer user accounts when they login to Zapflow. For more details on this subject please contact sales@zapflow.com.
"Zapflow has proven to be the perfect tool for finding deals and carrying out projects. During 2020, we have already made 4 acquisitions in Finland."
Gustaf Antman
Saashop.com
"Zapflow is one of the key tools that we use in our day to day work. With Zapflow, we can do everything from deal flow tracking to portfolio reporting."
Cyril Vančura
Imex Xpand
"We so felt the pain! Managing the deal flow in Excel was a nightmare and we are happy that all our deals are all now in Zapflow."
Will Cardwell
Courage Ventures
Learn more about security at Zapflow with our Security whitepaper
Hear more from Zapflow
Sign up for our FREE newsletter & be first to know about our latest features, industry news, events and updates on increasing work-efficiency!
Get more done with less effort
© Copyright 2021 Zapflow Ltd. All Rights Reserved.