Data Security and Privacy

At Simplisyt, we understand that the security and privacy of your data are of utmost importance. Our platform is built on a modern cloud infrastructure designed to protect your data, leveraging top-tier third-party cloud providers such as AWS, known for their proven track record in delivering high-performance, secure cloud services.

Your Data is Yours

We take your privacy seriously. Similisyt does not sell your data — anonymized or otherwise — to any third parties. You maintain full ownership of your data, and we will never access it unless you explicitly grant us permission, typically to resolve a support case. We’re here to help, not to exploit your data.

Security Features

Product Security:

1. Permissions Management: We offer flexible global access roles, allowing admins to define permission levels for everyone in the workspace. This ensures that the right people have access to the right data and tools.
2. Secure Passwords: Simplisyt enforces a strict password complexity standard. All user credentials are securely stored using BCrypt with salts, ensuring that your Log in information is safe from unauthorized access.
3. Single Sign-On (SSO): to streamline user access and enhance security. With SSO, admins can allow users to Log in using their existing credentials from a connected identity provider. This means users don’t need to create or remember a separate password for Simplisyt—making the log in process faster, more secure, and easier to manage.
4. Permanent Deletion: Users with the appropriate access rights can permanently delete panelists, panelist data, studies, and study data from Simplisyt. We believe in giving you full control over your data.
5. High Availability:We prioritize uptime and reliability. Simplisyt undergoes extensive testing, including automated and manual tests, performance benchmarking, production logging, and alerts. Our system is designed to ensure high availability with a 24/7 on-call rotation and fast, continuous deployments.

Network and Application Security:

1. Hosting and Storage: Simplisyt services and customer data are hosted within Amazon Web Services (AWS) data centers located in the United States, ensuring world-class infrastructure security.
2. Encryption: All data transmitted between your browser and our servers is encrypted using Transport Layer Security (TLS), ensuring safe communication. We also use Secure Sockets Layer (SSL) certificates issued and managed through AWS and enforce HTTP Strict Transport Security (HSTS) to add an additional layer of protection.
3. Backups & Monitoring:To further protect your data, we use AWS RDS' backup solution for databases containing customer information. We also monitor all system activity through DataDog, enabling us to detect and respond to issues promptly.
4. Incident Response: Our engineering team operates on a 24/7 on-call rotation with an established escalation policy to ensure rapid response times in the event of an incident. All production alerts are captured and automatically escalated to ensure quick resolution.

Compliance

1. PCI DSS Compliance: Simplisyt processes payments securely through our trusted payment provider, Stripe. For details on their security practices and PCI compliance, please refer to Stripe’s security page. .

Commitment to Security

We take a proactive approach to protecting your data and continuously improve our security practices. With top-tier infrastructure, robust encryption, and strict access controls, we ensure that your data remains secure at all times. If you have any questions or need further information about our security practices, feel free to reach out to our support team.

Your Data, Our Priority

At Simplisyt, we are committed to providing a secure and trustworthy platform for all your needs. Rest assured, we’re here to protect your data and provide you with the best possible service.