Maximum data confidentiality
You entrust us with your data, we protect it
At smsmode©, we are aware of the importance you place on the protection of your personal data. Committed since the beginning to the quality and security of our services, we offer the most appropriate technical and organizational data confidentiality measures in addition to the performance of our solution.
Confidentiality is the the heart of our DNA
Among our existing customers, many companies handle sensitive data such as medical or financial data. They entrusted us with the routing of their mobile messages. This justifies the trust they place in us and the postition we take on the data security.
Privacy by design
privacy at the heart of our design process
Maximum protection for your data
The platform uses appropriate encryption technologies and adjustable security measures. smsmode© - or anyone else - cannot access your data.
Hosting your data in Europe
The smsmode© platform is based on quality infrastructures. It is composed of a technical platform with redundancy hosted in 2 ISO 27001 certified DataCenters (MRS1 : Interxion | Marseille, DC4 : SCALEWAY | Paris).
These infrastructures ensure a maximum level of security and reliability. An option allows you to isolate your account data on an HDS certified host (Health Data Host).
Experts to protect our platform and processes
We have appointed an external DPO (Data Protection Officer) from the specialized law company PINT Avocats, and an CISO (Chief Information Security Officer) at Cyberwings.
Management of the imported data
All data that passes through our platform (via API, webservice or web application) are stored encrypted on highly secured servers in Europe (France).
Powerful security features such as hashing of text content and/or truncation of the last 4 digits of the recipient's number can also be set up on your accounts. The retention period of the text content in the active database can be shortened at your request. The content can be deleted immediately after sending, so that the data only pass through without any stocking period.
Data minimization
collect less, collect only what is necessary, for your security
A wise collection
The personal data collected are adequate, relevant and limited to what is necessary for the purposes for which they are processed.
An automatic deletion of this data takes place after 6 months. This period can be shortened at a customer request.
Customizable privacy features
Powerful security features such as content and recipient hashing can be configured on the account.
Logging of executed actions and access protection
Each client account is equipped with a log allowing a follow-up of all the actions carried out on the account, as well as the author of each action since the creation of the account. A double authentication is required to access the accounts.
Robust & secure design
for seamless integration with your solution
Constant availability
The source code of our solution as well as our information system benefit fromconstant improvements and a secured external backup available all time.
Plans for your safety
smsmode© rproves to the customers that it complies with cybersecurity requirements:
- a SAP (Safety Assurance Plan) which details the requirements to which we are subjected;
- a DRP (Disaster Recovery Plan) which defines the protocol implemented in case of failure;
- a ISSP (Information System Security Plan) which describes the security actions implemented.
smsmode© relies on a high rate of redundancy towards the data centers with a switchover allowing to ensure the continuity of the activities, to limit the breakdowns, to optimize the uptime and to guarantee a high stability of our platform.
A team trained in confidentiality issues
Access to accounts and customer data is restricted to authorized smsmode© employees: the account manager(s), the support manager and the billing department. Employees are bound by a confidentiality clause and made aware of the importance of data security and the application of the GDPR.
Subcontractors selected for their commitment to RGPD & privacy compliance
We select our subcontractors by favouring European actors who store their data in Europel to avoid any extraterritorial transfer of the core part of the network (our customers' data).
Transparency as a value
for a relationship based on trust
Data availability and reversibility of our service
All the data hosted on our platform (messages, DLR, contact databases...) can be exported from the client account and can be used by the clients in any way they wish, allowing total reversibility of our service.
A proven solution that you can challenge
According to its transparency policy, smsmode© offers its customers the possibility to call upon an independent organization to audit our solution. In addition, once a year, we perform pentests to ensure the performance of our tools and processes.
These annual physical and virtual security audits help to identify and correct potential vulnerabilities and improve the overall security of our platform.
Total transparency on our actions
The processing register is an available on request document, provided by our DPO. It attests to our compliance with Article 30.2 of the GDPR, demonstrating our company's application of the accountability principle. This documentation allows us to prove the compliance of our solution with the requirements of the GDPR.
A privacy policy validated by experts
smsmode© implements strict data protection measures, adapted to the risks and to our activity. These measures, validated by our DPO & RSSI, result in a strong internal data protection policy, encryption of stored data and secure access to the solution.
See our privacy policy and our appendix processing personal data as a subcontractor
SECURITY AT THE HEART OF THE PLATFORM
Labels & certifications to illustrate our commitment
Our teams work relentlessly to maintain the smsmode© platform at the level of the requirements of the official referentials presented by the various labels and certifications for which we are committed. Obtaining these certifications is a guarantee of the quality and security of our offers.
As such, our processes and solutions are regularly tested through internal and external audits by our consultants and certification bodies.
PRIVACY TECH LABEL
smsmode© has obtained the "Privacy Tech" label in the "Data Processor Compliant Solution" category. The first SaaS messaging platform to be awarded with this label, this distinction rewards our excellence in privacy as a data processor, which reinforces our commitments to our customers as a data controller.