Communication and data transfer
Transferring data introduces security risk. Employees must:
- Avoid transferring sensitive data (e.g. customer information, employee records) to other devices or accounts unless absolutely necessary. When mass transfer of such data is needed, we request employees to ask our Security Specialists for help.
- Share confidential data over private, company or employee-owned Wi-Fi networks and not over public Wi-Fi or private connection.
- Ensure that the recipients of the data are properly authorized people or organizations and have adequate security policies.
- Report scams, privacy breaches and hacking attempts.
We advise our employees to report perceived attacks, suspicious emails or phishing attempts as soon as possible to the management team.
We use Google Drive and Dropbox to share information internally and prepare presentations.
- When sharing a google document, spreadsheet, or slide, we always invite specific people instead of making the document available to view or edit permissions with the link.
- When sharing a Dropbox link, we only communicate the link to the appropriate party internally or externally.
We use Slack, Gmail, and Asana to communicate internally and with our customers.
- All of our communication systems are password-protected, role and permission-based, and have anti-virus and threat screening features.
- Channels and projects are siloed so employees, clients, partners, and contractors only have access to their channels and projects.
- We never share passwords, API keys, or data access via these communication platforms.
We use a secure and proven video conferencing tool when meeting internally and with you about your projects.