The basis of this security policy is to outline how the CrystalMQ service protects & processes customer information. We know that the security and integrity of customer data is important to our customers’ values and operations. Also, security breaches can completely topple the overall process. That is why we keep it private and safe. We want our customers to have a general understanding of what we at CrystalMQ are doing to protect the integrity of their data.
We help our customers keep regulate their data privacy, security and integrity in countless ways.
We are compliant with high security standards, such as encryption of data in transit and European security standards. We provide end to end encryption by enabling SSL to secure data both in rest and transit. SSL certificates are updated on a regular basis. Data Security methods and processes will frequently be updated from time to time..
We only disclose data to third parties such as sub processors where disclosure is necessary to provide the services. Sub processor refers to a third-party data processor engaged by us will have access to or process the data under the Data processing agreement (DPA) for the provision of Services. We use stripe as a sub processor to process customers payments and Digital ocean to host server. We have also evaluated our sub-processors to ensure that they are security compliant and meet the requirements of security and privacy.
|Company Name||Activity||Place of Processing||Applicable Cloud Region|
|Digital Ocean||Data centre||US||San Francisco|
We use Digital ocean servers to host our MQTT Broker. The servers as of today are hosted in the US region, San Francisco as the data Center which hosts the data.
CrystalMQ has no ability and insight of which or what sort of data our customers are handling with our service. Also, we (including our employees) won't glance at or view and copy their data to other servers except to the one (Sub processor) we mentioned.
In addition, we are planning to comply 100% with the European General Data Protection Regulation (GDPR)
We are experts in developing highly extendable next generation frameworks & tools and advanced solutions for manufacturing industry. An end to end product & solution provider for all IoT / IIoT requirements.