Guest Post by Kris O’Brien, Director of Information Technology
You may have heard that this month is Cybersecurity Awareness Month. In this day and age, with more and more professionals working from home or in hybrid models, cybersecurity continues to be at the forefront of our minds and a focus for nonprofit organizations and their clients.
We know we need to keep ourselves and our electronic data protected, but do we know the steps our technology partners take to shield us from potential threats?
At iWave, we are committed to safeguarding our clients and their data. We understand the enormity of this task and the duty we have to provide industry-leading privacy and security capabilities. Here are a few of the ways we’re working every day to earn and maintain your trust.
We Protect Your Data
iWave never shares your data, and it is just that, your data. Client data is data you and your organization provide to iWave via profile details, internal giving data, screening projects, and analytics. We never share this data in any way with third-party organizations or other clients. Additionally, we do not use your data for benchmarking or machine learning.
Industry-standard Security Frameworks and Certifications
Currently, we hold a SOC 2 certification. A SOC 2 certification is an auditing procedure that ensures your service providers securely manage data to protect the interests of an organization and the privacy of its clients. SOC 2 defines criteria for managing customer data based on five “trust service principles”: security, availability, processing integrity, confidentiality, and privacy. As well, we follow industry-standard security and privacy frameworks and certifications such as CCPA, GDPR, HIPAA, and FEC. Any third-party data vendors that sell social media information are not compliant with CCPA, which is why iWave does not provide these types of data points.
Privacy is an Ongoing Priority
We complete data privacy and regulation assessments of our platform, procedures, and policies to ensure we stay up to date with best-in-class practices. We also vet our data providers and partners to ensure compliance with privacy regulations.
Security Measures Are an Non Negotiable
We build the most powerful security technologies into our platform, including secure coding practices, cybersecurity tools and encryption mechanisms, and multi-factor authentication (MFA). Multi-factor authentication protects your username and password and prevents unauthorized access by requiring at least two forms of verification to prove your identity.
We are proactive in protecting your data through vulnerability scans, penetration testing, ongoing risk assessments and by adapting quickly to changes in industry-standard, regulations, and best practices. iWave has also chosen Amazon Web Services (AWS), the world’s most comprehensive cloud computing environment, as our provider.
Cybersecurity Awareness Month or not, iWave has your back. When you’re with iWave, you can be confident that we’ve taken the appropriate measures to keep you and your organization safe from cyber threats.