Security
Trust is the foundation of any successful partnership. That’s why your data security is Ferrio’s top priority. Security and reliability are the guiding principles in the design of Ferrio Connect and the integrations that run on the platform, so you can focus on running your business.
Industry-Leading Security Certification
Ferrio is ISO 27001 accredited, the gold standard for information security management. This certification demonstrates our commitment to maintaining robust security controls, continuous risk assessment, and compliance with international best practices. Your data is handled with the highest level of care, and our processes are regularly audited to ensure ongoing adherence to these rigorous standards.
End-to-End Encryption
Your data is encrypted both in transit and at rest. We use industry standard encryption protocols to ensure that your information remains confidential and secure, whether it’s being transmitted or stored. This means that only authorized users can access your data, and it’s protected from unauthorized interception or breaches.
Secure, UK-Based Hosting
Ferrio Connect is hosted exclusively in Microsoft Azure UK South data centers. By leveraging Azure’s world-class infrastructure, we ensure that your data remains within the UK and benefits from Azure’s comprehensive security measures, including physical security, network protection, and compliance with UK and EU data regulations.
Stability & Uptime
Ferrio Connect has maintained 99.98% platform uptime over the last three years with 0 multi-hour outages, ensuring that your operations run smoothly without interruption. Our infrastructure is designed for resilience, with redundant systems and proactive monitoring to minimize downtime and keep your business moving forward.
Minimal Data Retention
Personally identifiable information (PII) is any data that could potentially be used to identify a particular person, and is covered by various legal frameworks around the world including GDPR, the UK Data Protection Act (UKDPA), and CCPA. Some of the data we handle may constitute PII, such as contact data received from CRM systems or social networks.
Ferrio Connect is an integration platform, not a storage platform. We store only the essential information required for matching, connectivity and auditing purposes, and only as long as needed, ensuring that your confidential information remains under your control at all times.
Auditing & Data Provenance
We maintain thorough logs of every action on the platform for 60 days. This allows us to track data history and provenance for troubleshooting and bugfixes. These logs contain no sensitive or personally identifying information and are permanently deleted after 60 days.
Change & Vulnerability Management
Security is at the core of our development process and our culture encourages security as the first consideration before adding any new feature or connection to the product. OWASP Top Ten principles are followed throughout the product design process. We conduct peer review of all new code with security as a primary consideration, from new platform level features to bug fixes, as per industry standard approaches.