Statement of Policies Regarding Data Security & Confidentiality
Each person and each team using Clever Checklist expects their data to be private, secure and confidential. We understand how important this is to our customers and work to the best of our abilities to ensure all three expectations are met. Please review the information below regarding our current policies and practices. This is a living document and we will update it as our service evolves and industry practices change.
Privacy
By default, any templates and checklists you complete are private to your team. That is, viewing the templates, checklists and files shared within a specific team requires authentication as a member of that team. We attempt to clearly label all privacy controls and explain their function.
All templates created in a team are visable and available for use by all members. There is currently no way team member assigned the User role to discover checklists other team members have completed. Team members with the Admin role can view all team members completed checklists.
When someone leaves your team, your team administrators can quickly and easily deactivate their account. The account is preserved in a deactivated state so that you may still view the checklists associated with the account, but that person will no longer be able to sign in to Clever Checklist and any sessions they currently have open will be terminated.
Security
As a company, we use Clever Checklist for everything we do. Ensuring that the Clever Checklist service remains secure is vital to protecting our own data. We protect your data with the exact same mechanisms we use to protect our own. The security of your information is required for our success as a business. Below are some details on our security practices.
100% Encrypted Traffic, in Both Directions
Whether you're at your computer or on your phone, absolutely nothing goes over the network in the clear. Clever Group uses 256-bit AES, supports TLS 1.2 for all of your messages, and uses the ECDHE_RSA Key Exchange Algorithm. We monitor the security community's output closely and work promptly to upgrade the service to respond to new vulnerabilities as they are discovered.
Secure Physical Location
Our servers are located in Amazon's AWS data centers. They've devoted an entire portion of their site to explaining their security measures, which you can find here: http://aws.amazon.com/compliance/
Confidentiality
We regard the information you share within your Clever Checklist account as absolutely and unconditionally private and confidential. We place strict controls over our employees’ access to internal data and are committed to ensuring that your data is never seen by anyone who should not see it.
While the operation of the Clever Checklist service would not be possible unless there were some technical employees with sufficient system permissions to enable them to access and control software that stores and indexes the content you add to Clever Checklist, all are prohibited from using these permissions to view customer data.
All of our employees are bound to our policies regarding customer data and we treat these issues as matters of the highest importance within our company. If, in order to diagnose a problem you are having with the service, we would need to do something which would expose your data to one of our employees in a readable form, we will always ask you prior to taking action and will not proceed without your permission. Our platform will automatically generate an audit entry of any such access.
We know how important these issues are to you. They are equally important to us. The security, privacy and confidentiality of your information are core to our success as a business and we will continue to be proactive, vigilant and diligent in ensuring its safety.
If you have additional questions regarding data privacy, security or confidentiality we’d be happy to answer them. Please write to security@cleverchecklist.com and we’ll respond as quickly as we can.