Protecting our users privacy is paramount. Demostack recognizes the importance of Privacy and Data Protection regulations such as GDPR and CCPA, and aligns with these and other frameworks. We promote Privacy by Design and are committed to protecting your and your customers' data.
Demostack has earned its SOC 2 attestation with PWC, effective October 31, 2023. The Auditor’s report is “unqualified,” meaning no control gaps were identified. We never sell your data to any third party. We encrypt data at rest and in flight and use HackerOne for regular penetration tests.
Our goal is to maximize the security of your demos and users. We use tools like Google's Security Command Center and Snyk to find and fix vulnerabilities and misconfigurations on a continuous basis.
In the spirit of true transparency, we publish 90-day statistics of the availability of our platform, warts and all.
We're serious about bug hunting
Protecting your data is vital to our shared success. So to ensure the security of our systems, we maintain a Vulnerability Disclosure Program for ethical hackers to report potential bugs.
SOC 2 Type II
Demostack has earned its SOC2 Type II attestation with PWC, effective October 31, 2023.
Our policies and procedures prioritize compliance with GDPR and data protection regulations worldwide. We embrace Privacy by Design principles. Our DPA is based upon the post-Schrems II Standard Contractual Clauses (SCCs).
Demostack is compliant with the HIPAA Privacy and Security standards as a Business Associate, and we have the policies, procedures and systems to protect your ePHI.
Stay up to date on the latest information
Demostack protects your data to fulfill your privacy obligations and give you peace of mind.
With third-party audits and certifications, Demostack meets your compliance requirements.
At Demostack, we are committed to protecting our customers' data through multiple layers of protection.