Launch your app

GDPR, security and privacy

App safety en privacy

The AVG(General Data Protection Regulation) is often a topic of conversation at Socie communities. Together with our partners, we are committed to securing personal data. Privacy and the proper use of personal data are very important to our organization. On this page we list some of the security measures we have implemented within our platform and the documents we have created.

Testing

Pentesting

At Socie, we perform pen testing on our software by outside parties. With this, these parties simulate external attacks to identify vulnerabilities.

Security measures through the platform

On the Socie platform, we have taken the following measures to comply with the AVG and privacy laws:

Automatic cleaning of user accounts

At Socie, we do not want to keep data longer than strictly necessary. On the other hand, we want the user experience to remain good and pleasant. Therefore, if accounts do not log in for more than 1 year, we send an email that we will automatically delete his/her account if they do not log in within a month.

Comprehensive privacy settings per user

Any user on the Socie platform can adjust comprehensive privacy settings on any data available from them in the app. This gives community members full control over their data.

Automatic reminder privacy settings

The app reminds users every six months to check privacy settings. In doing so, we ensure that people are aware of their privacy settings.

Profile data insightful for users

If the community administrator has set profile is customizable, a member can see their data reflected in their own member profile. This allows you to immediately see what data is known within the community.

Suggested visibility

We allow the community administrator to specify a suggested visibility in the app for personal data so that new members get this as advice from the community.

Additional checks on personal data

The community administrator can activate additional access control on accessing personal data. This means that if someone uses the app the person must always enter an additional access control to access the personal data. This can be Face ID, a fingerprint or a numeric code.

Restricted search of member lists

We enable the community administrator to activate limited search in member lists. Only the members being searched for are shown. This makes personal data more protected.

Access

Two-factor authentication (2FA).

Any user of the Community Management system can enable two-factor authentication (2FA) as an additional security measure. When enabled, the user must enter a six-digit code generated by their preferred authentication app to obtain a refresh token from the API.

Documents

We have prepared the following documents around AVG and Privacy:

Privacy Statement

Check our privacy statement.

Processor Agreement

The processor agreement is in the community administration at: Settings > Account > Processor Agreement.

General conditions

The terms and conditions can be found in the community administration at: Settings > Account > Terms and Conditions.

Data Breach Protocol

A data breach protocol is in place. If we face a data breach, there is a professional roadmap.

Socie Security Document

There is a Socie security document with all measures to secure our data. This can be requested.

This is a staging environment