Written by Support InfoBridge
The Nebula Synchronizer has been audited by professional security companies to ensure a safe synchronization. Audits will be done on a regular basis to ensure security & privacy for all our customers.
As we use Microsoft Azure, we are guaranteed of a very secure platform, as Microsoft is currently the only Cloud provider which has adopted the ISO 27018 Privacy Standard.
Going more indepth find below detailed information where and how we are handling your data.
The Netherlands and Ireland. Sub-processing of billing data by Recurly in the United States of America.
Personal data subjects
Administrator(s) of the Nebula Synchronizer and linked users.
Personal data categories
During registration of a Nebula Synchronizer account, we collect the following personal data: name, email address and telephone number of the customer administrator and billing administrator. For each linked user we collect the username, name and email address.
The personal data collected is for user identification, company billing and for contact case of issues. Emails will be used to send information on product issues, releases and other relevant product information.
Sensitive personal data
The Nebula Synchronizer does not process or collect sensitive personal data.
For Exchange Sync, we store username and password, of course scrambled
For Google or Office 365 users we do not store username and password. in this case it is an OAuth access token (For Office 365 and Google, this OAuth access token is processed and saved in MS Azure)
When a customer uses Microsoft Exchange we offer 2 ways of authentication: each user can individually provide credentials or can use Exchange application impersonation. Credentials are encrypted because they need to be reversible in order to authenticate. Only a select number of InfoBridge employees have clearance to access to the resources that store the encrypted credentials.