Data Security
Data Security
Privacy and GDPR
EDTCH respects your right to privacy, and understands that while visiting our website, using our products and services, or otherwise interacting with us, you prefer to control the way your personal information is stored and processed.
EDTCH is committed to protecting customers' and end-users' data from unauthorized access. We maintain compliance with the General Data Protection Regulation (GDPR) and help our customers to comply with GDPR and other similar regulations.
We execute Standard Contractual Clauses (SCC) to protect customers' personal information if it's transferred between EU and non-EU countries. Please contact our Sales Support to request the documentation.
Trusted hosting providers
We work only with trusted hosting providers:
Hetzner Online GmbH For more information on Hetzner Online GmbH, please see here: Hetzner Data Privacy Policy.
The data of our European clients is stored at Hetzner and AWS (Dublin, Ireland; Frankfurt, Germany), and processed at Hetzner (Germany). The contact information of our client companies and their contact persons is stored and processed at Hetzner (Germany).
We store the data of our clients from the US and other regions at Hetzner (Germany) and AWS (N. Virginia; N. California).
Regardless of where your information is stored or processed, we apply the same protections described in this Privacy Policy.
Data Encryption
All communication between your users and our servers is SSL-encrypted. SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.
Additionally, we employ encryption-at-rest to encrypt all data in our database with the industry-standard AES-256 algorithm. This means that your data is encrypted before and after accessing the database and never lies there in plain text.
Data processing agreement (DPA)
Once you start using EDTCH, you will sign a data processing agreement with us. It lays out how we may handle your data, explains the security measures deployed, states your rights, and is needed to be fully compliant with the GDPR.
Internal security policies
Our team is highly security-aware. To avoid falling prey to outside tricksters, we regularly hold internal security briefings, only deploy up-to-date and modern browsers, use password managers and different passwords for all sites, regularly update passwords, and encrypt the hard drives of our devices.
Availability and disaster recovery
Our application and databases are distributed and replicated across various servers. In the event that one of those servers goes down, another instance would take over the job of serving the application, usually without the end-user actually noticing.
Databases are backed up on a continuous basis and can be restored should the software or server ever fail in a significant way. Backups are stored in different availability zones for additional security.
Monitoring
We closely monitor the performance of our application and databases. Any internal errors or potential failures of our various integrations are logged and trigger notifications to our development team, usually allowing us to identify the problem within a few minutes and swiftly remedy the situation.
User requests and bug reports
Having said the above, sometimes it's users who notice a glitch or stumble across a bug in the software. We encourage you to get in touch via our support form (accessible via the button in the bottom-right corner of the screen) or email at support at edtch.com — we greatly appreciate any hints or feedback. If you can, please include a screenshot and an exact description of the situation you encountered. Critical issues receive immediate attention and are usually fixed within two hours; we strive to deal with non-critical requests within 24 hours.
Full-disclosure policy
If anything serious ever happens and your data is affected, we will provide full disclosure to enable you to take precautions and minimize the damage. Our experience has taught us that transparency is paramount in earning and keeping your trust, if security should ever be threatened.
Privacy and GDPR
EDTCH respects your right to privacy, and understands that while visiting our website, using our products and services, or otherwise interacting with us, you prefer to control the way your personal information is stored and processed.
EDTCH is committed to protecting customers' and end-users' data from unauthorized access. We maintain compliance with the General Data Protection Regulation (GDPR) and help our customers to comply with GDPR and other similar regulations.
We execute Standard Contractual Clauses (SCC) to protect customers' personal information if it's transferred between EU and non-EU countries. Please contact our Sales Support to request the documentation.
Trusted hosting providers
We work only with trusted hosting providers:
Hetzner Online GmbH For more information on Hetzner Online GmbH, please see here: Hetzner Data Privacy Policy.
The data of our European clients is stored at Hetzner and AWS (Dublin, Ireland; Frankfurt, Germany), and processed at Hetzner (Germany). The contact information of our client companies and their contact persons is stored and processed at Hetzner (Germany).
We store the data of our clients from the US and other regions at Hetzner (Germany) and AWS (N. Virginia; N. California).
Regardless of where your information is stored or processed, we apply the same protections described in this Privacy Policy.
Data Encryption
All communication between your users and our servers is SSL-encrypted. SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.
Additionally, we employ encryption-at-rest to encrypt all data in our database with the industry-standard AES-256 algorithm. This means that your data is encrypted before and after accessing the database and never lies there in plain text.
Data processing agreement (DPA)
Once you start using EDTCH, you will sign a data processing agreement with us. It lays out how we may handle your data, explains the security measures deployed, states your rights, and is needed to be fully compliant with the GDPR.
Internal security policies
Our team is highly security-aware. To avoid falling prey to outside tricksters, we regularly hold internal security briefings, only deploy up-to-date and modern browsers, use password managers and different passwords for all sites, regularly update passwords, and encrypt the hard drives of our devices.
Availability and disaster recovery
Our application and databases are distributed and replicated across various servers. In the event that one of those servers goes down, another instance would take over the job of serving the application, usually without the end-user actually noticing.
Databases are backed up on a continuous basis and can be restored should the software or server ever fail in a significant way. Backups are stored in different availability zones for additional security.
Monitoring
We closely monitor the performance of our application and databases. Any internal errors or potential failures of our various integrations are logged and trigger notifications to our development team, usually allowing us to identify the problem within a few minutes and swiftly remedy the situation.
User requests and bug reports
Having said the above, sometimes it's users who notice a glitch or stumble across a bug in the software. We encourage you to get in touch via our support form (accessible via the button in the bottom-right corner of the screen) or email at support at edtch.com — we greatly appreciate any hints or feedback. If you can, please include a screenshot and an exact description of the situation you encountered. Critical issues receive immediate attention and are usually fixed within two hours; we strive to deal with non-critical requests within 24 hours.
Full-disclosure policy
If anything serious ever happens and your data is affected, we will provide full disclosure to enable you to take precautions and minimize the damage. Our experience has taught us that transparency is paramount in earning and keeping your trust, if security should ever be threatened.
Ready to get started delivering high-impact training with Edtch?
Speak with a member of our team today.
© 2024 Edtch. All rights reserved.
Use Cases
Ready to get started delivering high-impact training with Edtch?
Speak with a member of our team today.
© 2024 Edtch. All rights reserved.
Use Cases
© 2024 Edtch. All rights reserved.
Use Cases
Ready to get started delivering high-impact training with Edtch?
Speak with a member of our team today.
Ready to get started delivering high-impact training with Edtch?
Speak with a member of our team today.
© 2024 Edtch. All rights reserved.
Use Cases