Data security is a prime concern today, therefore any company in the market for a CRM solution will have questions about it. Here are answers to specific questions many have about data security in Coevera.
Data Access Limitations
Data access can be limited, within Coevera, through different aspects such as data elements, types of users, permissions or groups. Task level permission can be assigned to users, and users can only view or edit specific records defined in administration. Tasks themselves can also be assigned multiple access levels.
For sensitive information, field-level security is applied—sensitive information can be hidden for selective roles. Field level security allows you to make fields invisible, enabling them for read-only or for full access. There are no fields or features in our standard data model that are not configurable by the client.
Various levels of privileges can be assigned to administrators. Administrators set permissions and roles.
As described in the previous article, there is full data segregation between clients.
Part of our GDPR compliance is that Coevera employees have no access to customer data. If a client chooses, they may add a Coevera employee as an authorized user and thereby grant access to the customer’s data. Otherwise, we are only able to see customer usage of the system, but not the data.
Tracking Changes Through Audits
Coevera maintains a log of all changes to system data, including specific action and data changes, time of the action, and the specific user taking the action.
In practice: beyond standard exports, Coevera can supply a complete backup or dump of customer data at any time, and through its Bi-Feeder technology can grant daily access to the full database — useful when a client needs to feed live CRM data into separate analytics or reporting systems.
Encryption of Data
When data is in transit, it is encrypted and securely transmitted using the latest SSL (secure socket layer) technology. Data at rest is encrypted by our cloud provider AWS (Amazon Web Services). AWS utilizes the industry-standard AES-256 encryption algorithm for the encryption of data on the server.
Coevera complies fully with GDPR.
Disaster Recovery and Backups
There is full backup of CRM data, as covered in our last article. You can recover your database at any point during the backup retention period of 35 days, guaranteed by AWS RDS backup services. We can at any time provide a complete backup/dump of the data, and with one of our technologies, Bi-Feeder, we can even provide daily access to the full database.
Disaster and failover capabilities are inherited from the AWS environment. In addition to these, Coevera has an internal mechanism for a secondary site to be available within 24 hours.
Authentication of Login Credentials
Through SAML 2, Coevera integrates its login with the client’s sign-on protocol. Two-factor authentication, if required, is provided by external services, such as Google or Microsoft.
For Configuration of Platform
For data visualization, platform configuration, automation, defining workflow rules and more, we provide a complete, easy-to-use toolkit.
Fields and forms are completely customizable. Through process creation, workflow rules can be fully defined, and customization of record previews is also possible.
Have further questions about our data security management? Feel free to contact us.
