How Prism Cloud Protects Your Data

We take data security and privacy very seriously, and embed it into Prism Cloud's infrastructure and our product design, development and release processes, so that you can have peace of mind.

These are some of the main ways in which we protect your data and privacy:

• All data in transit and at rest is fully encrypted using modern standards, and stored in our AWS environments. See more information on AWS Data Centers.
• We adhere to secure coding practices, implementing SAST and SCA code scans to detect vulnerabilities and code quality issues proactively.
• We use a variety of AWS and 3rd party best-in-class security tools to monitor the security of the Prism Cloud infrastructure and application.
• Data stored in Prism Cloud Workspaces is logically isolated for each customer.
• The application enforces role-based security access controls and permissions, which are tested on an ongoing basis.
• GraphPad undergoes infrastructure and application security vulnerability scans performed by an independent security firm from time to time.
• Production systems are separated from development and testing environments, and other internal corporate systems.
• Any access to production systems is limited to GraphPad staff who require the access for systems maintenance, with access provided via 2FA or better with principle of least privilege in mind.
• Our staff receives ongoing mandatory training on a wide variety of security and privacy topics.
• We do not sell or rent user personal data to advertisers or third parties for advertising purposes, and comply with regulations such as GDPR to give you control over your data. See our Privacy Policy.

Security and privacy remain a priority as we continue to develop Prism Cloud to power your collaboration workflows.

Have questions or suggestions? Contact us