Media Sonar Security

We take security seriously – customer trust and data security are critical to everything we do. Our team works to ensure you experience our world-class security platform while keeping your data safe and secure.

Confidentiality

  • we place controls over employee access to customer data
  • some employees have access to systems that store and process customer data to maintain operations of services (ie. customer support diagnosing a problem)
  • prohibited from using these permissions unless necessary
  • employees and contract personnel are bound to policies regarding customer data

Security Controls

  • system monitoring and logging
  • two-factor authentication for all server access across our production environment
  • web application firewalls are configured according to industry best practices

Audit

  • security assessments performed by internal personnel
  • monitor services for new vulnerabilities discovered by the security community
  • annual third-party penetration testing

Incident Management

  • maintain security incident response policies and procedures
  • will notify customers of any unauthorized disclosure of customer data
  • publish system status information 
  • notify customers of critical incidents by email

Deletion of Customer Data

  • when a customer terminates a subscription term, if a customer does not otherwise elect to delete its account, Media Sonar will within 60 days following the subscription termination, delete all copies of customer data

Infrastructure

  • uses infrastructure provided by Google Cloud Platform (“GCP”) to host or process customer data
  • information about security, audits and certifications including ISO 27001 certification and SOC reports are available from their compliance website: https://cloud.google.com/security

Certifications

SOC 2 Type 2

The System and Organization Controls or “SOC” 2 Report addresses an organization’s controls against the AICPA Trust Services criteria. The SOC 2 Type 2 Report focuses on management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls.

Media Sonar is in progress of completing its SOC 2 Type 2 Certification on the following Trust Service Criteria:

  • Security
  • Confidentiality

If you have additional questions regarding security and confidentiality, we are happy to answer them. Please write to security@mediasonar.com with your questions or security-related concerns.