Brilbook's Data Security

Securing Brilbook's User Access

Access into Brilbook instance is performed via the following authentication methods:

• Credentials: username (usually your email address) and password;
• We also support the use of external identity providers, such as Google SSO (for Pro & Enterprise plan only) and Okta,
  OneLogin, Azure AD and custom SAML 2.0 (for Enterprise plan only);
• In addition, two-factor authentication (2FA) via a text message or through an authenticator app can be optionally enabled by the account administrators.

Data Encryption

Brilbook uses the following methods to encrypt customer's data:

• Data at rest is encrypted using AES and 3DES.
• Data in transit across open networks is encrypted using TLS 1.3 (at minimum TLS 1.2).
• User passwords are hashed and salted.

Data Centers

Brilbook is a fully cloud-based service and all instances and services are hosted on Microsoft Azure, Amazon AWS, Google Cloud or Godaddy Cloud infrastructures based in the customer's region.

All data centers employ leading physical and environmental security measures, resulting in highly resilient infrastructure.

Regulations

We have the following certifications, reports and compliance programs:
ISO 27001, SOC 1 Type II, SOC 2 Type II, SOC 3, GDPR, CCPA, HIPAA.