Security

We at Govrn Understand the Importance of Security


Our commitment to safeguarding your information is of utmost importance. We strive to create a secure environment for your data by implementing robust security measures and adhering to industry standards and regulations.


ISO 27001


FedRAMP High

Write what the customer would like to know,
not what you want to show.

SOC 1, 2, and 3


HIPAA


Data Privacy

Protecting your data is our top priority. To ensure the privacy and security of your information, we have implemented the following measures:

Azure Microsoft Hosting

Govrn hosts its systems on Microsoft Azure, a leading cloud services platform known for its robust security features and compliance standards. By leveraging Azure's infrastructure, we benefit from their extensive security controls and compliance certifications, including:

  • ISO 27001
  • FedRAMP High
  • SOC 1, 2, and 3
  • HIPAA

These certifications and standards ensure that our systems and your data are protected by industry-leading security measures.

GDPR Compliance

Govrn is dedicated to complying with the General Data Protection Regulation (GDPR). We continually work to maintain and improve our data protection practices, ensuring that your personal data is processed lawfully, fairly, and transparently. Our commitment to GDPR compliance includes:

  • Ensuring that personal data is collected for specified, explicit, and legitimate purposes
  • Limiting the collection and processing of personal data to what is necessary for our purposes
  • Keeping personal data accurate and up-to-date
  • Storing personal data securely and only for as long as necessary
  • Implementing appropriate security measures to protect personal data from unauthorised access, alteration, disclosure, or destruction

Data Encryption

To protect your data from unauthorised access, we use industry-standard encryption methods for data transmission and storage. All sensitive information is encrypted using strong cryptographic algorithms, ensuring the confidentiality and integrity of your data.

Access Control

At Govrn, we have implemented strict access control measures to prevent unauthorised access to our systems and your data. Only authorised personnel with a legitimate need for access are granted permission, and we regularly review and update access rights.

Two-Factor Authentication (2FA)

Govrn has implemented Two-Factor Authentication (2FA) for all user accounts and administrative access to systems. 2FA adds an extra layer of security by requiring users to provide a second form of verification, such as a one-time code sent via SMS, in addition to their password. By using 2FA, we significantly reduce the risk of unauthorised access to our systems and your data.

Incident Response

In the event of a security incident, we have a dedicated team responsible for responding and mitigating the situation promptly. We are committed to informing our clients and partners about any potential impacts on their data and taking necessary actions to minimise damage.

UniverSign Electronic Signature Security

Govrn uses UniverSign for secure electronic signature processes. UniverSign employs advanced security measures, including end-to-end encryption, to ensure that your sensitive documents and personal information are protected during the signature process. UniverSign's security measures are compliant with eIDAS, which sets the legal framework for electronic signatures within the European Union.

By using UniverSign's secure services, we can provide our clients and partners with a reliable and secure way to sign documents electronically.

Apryse Security

At Govrn, we use Apryse for secure document processing and management. Apryse is a trusted and reliable software development kit (SDK) that offers comprehensive security features, such as encryption and access control, to protect sensitive documents and data. Apryse is compliant with various security standards, including:

  • FIPS 140-2 Level 1
  • GDPR
  • HIPAA

By integrating Apryse into our systems, we can ensure the secure handling and processing of your documents.

External Providers

At Govrn, we carefully select and collaborate with external providers to complement our in-house security measures. Our external providers are chosen based on their track record, security standards, and adherence to industry best practices. We work closely with them to ensure that their services meet our security requirements and align with our commitment to data privacy and protection.

We regularly assess the security practices and performance of our external providers, and we require them to adhere to strict security guidelines and data protection policies. This includes, but is not limited to:

  • Compliance with relevant data protection regulations, such as GDPR and HIPAA
  • Implementing strong encryption methods for data transmission and storage
  • Maintaining strict access control measures to prevent unauthorised access to data
  • Promptly addressing security incidents and informing us of any potential impacts on our clients and partners

By collaborating with reliable and secure external providers, we can offer a comprehensive security solution that protects your data and meets the highest industry standards.

Continuous Improvement

At Govrn, we recognise that security is an ongoing process. We are dedicated to continuously evaluating and improving our security practices to ensure the highest level of protection for your data.

Capterra tracker