boostup-hero-12

Enterprise-Grade Security you Can Trust

Not only do we build world-class features, but we are also SOC 2, Type-2 compliant. We built our platform with a laser focus on enterprise-grade reliability, security and data protection for our customers.

SOC2-Type-2_Vanta-Badge

We Protect Your Data Like It’s Our Own

We built our platform with a security-first focus, dedicated to protecting your data. We are SOC 2, Type-2 compliant with highly restricted access controls, 256 bit end-to-end encryption, HIPAA and GDPR compliance and granular data expiration policies that customers can control.

We Put You in Control

Top Security and Privacy Features

Everyone at BoostUp is committed to protecting our customers' data. That’s why we continually monitor our network security and infrastructure allowing us to identify any vulnerabilities, their severity and resolve them quickly.

Infrastructure Security

BoostUp’s cloud service is hosted in AWS who provides robust, physical data center security and environmental controls. We make extensive use of security groups to restrict minimum-level access to these servers.

Application and Data Security

BoostUp only allows login via Single Sign-On (SSO). SSO login is supported for Google Apps and Office365. As a result, BoostUp never stores any user passwords in our database.

Access Control

BoostUp employs the principle of least privilege – users should only be able to access functions, data files, URLs, controllers, services, and other resources, for which they possess specific authorization.

Data Encryption

BoostUp uses cryptographic algorithms that have been validated against FIPS 140-2 protocols and TLS is used for all connections. All sensitive data is encrypted as rest and in motion.

boostup-alternating-content-image-09

Employs Strict Malicious Data Control Policies

All SQL queries, HQL, OSQL, NOSQL and stored procedures, calling of stored procedures are protected and not susceptible to SQL injection. BoostUp.ai application has security controls in place to prevent LDAP injection, OS command injection, Remote File Inclusion (RFI), Local File Inclusion (LFI), XML attacks and DOM Cross-Site Scripting (XSS) attacks.

boostup-alternating-content-image-03

Applies Tight Vulnerability Management Policies

BoostUp proactively monitors our infrastructure to identify any vulnerabilities and with security researchers to verify and address any issues. Please refer to our Vulnerability Disclosure Policy for more details.

Lee Rayl

Security Program Manager | Degreed

In the many security reviews I have done in my career, BoostUp was the fastest, most transparent, no BS security review I have ever gone through. The team genuinely understands the importance of security. The whole process was seamless, the team was attentive and responsive, and we completed the entire security review in 2 business days - a record for sure!

Ready to Give your Revenue a Boost?

Unlock the secrets that will unleash your customer-facing team's full selling capacity.

Get a Demo
boostup-ctaimage-2