Security and Compliance of Workflow Automation

Home
Security

Enterprise-grade security, compliance, and privacy

Automate entire document workflows while airSlate’s industry-leading security standards protect your data.

Security Overview

Data and Information

Encryption

All user communications are encrypted with the NSA developed SHA-256 encryption algorithm which protects data transfers between users, or user and server, against external access.

Backup policy

Сopies of all critical data are backed up on a daily basis and stored for one month.

Password hashing

airSlate doesn’t store user passwords. All passwords are hashed (and salted) securely using SHA512 encryption.

Data storage & protection

Data storages are protected from accidental or deliberate damage or destruction and from unauthorized users and uses. All storage resources are protected by industry-leading service providers, offering state-of-the-art physical protection for the servers and infrastructure. Within our infrastructure, each storage unit is secured with additional authentication.

Payment details

airSlate doesn’t store any payment details ‒ all payments are made through a third party to securely process credit card information. airSlate complies with all PCI DSS requirements.

Standards-based identity

airSlate currently supports SSO within its system’s products. Additionally, we support SSO with multiple identity providers via SAML 2.0.

Account verification for non-SSO users

Non-SSO users are required to validate their accounts via a link provided in an automated email.

Infrastructure

Real-time monitoring

airSlate scans infrastructure and applications regularly to detect any existing or potential vulnerabilities. Additionally, we share this information with users on the status page.

Logging

We log every action performed in the system and randomly record sessions while keeping them anonymous. This allows us to quickly detect any possible bugs and fix them.

Disaster recovery and business continuity

airSlate has tested procedures in place to ensure the system’s uptime and availability.

Incident Management

All incidents submitted to our support via email or chat are resolved in accordance with the established incident policy.

Feature releases and reliability

We use CI/CD software development methodology and change management procedures to deliver new features quickly and securely.

Risk management

airSlate performs monthly risk assessments to ensure the system’s overall integrity.

Integrations

Integrations encryption standards

All data transmitted between airSlate and third-party integrations go through standard encryption and hashing protocols.

Third-party integrations security

A separate, secure communication channel is built to integrate with each third party integration provider. This way, airSlate ensures that all the data transferred between the systems is encrypted and safe.

Partners

Partner agreement

While signing a designated partner agreement, every airSlate partner provides their full information to ensure the transparency, quality, and safety of the collaboration.

Partner types

airSlate partners with MSPs and resellers, both individuals and companies. Every relationship with a partner is established through a separate company product ‒ Partner Connect Portal.

Personnel

Access levels

An employee’s access level is determined by their position. Access reviews are performed regularly and access is immediately removed if no longer necessary.

Secure access

airSlate employees use OpenVPN to securely access the system infrastructure located on AWS servers. The servers are protected from unauthorized access and can only be reached through a specific VPN connection.

Multi-factor authentication

airSlate enforces multi-factor authentication for every employee.

Employee asset control

airSlate employee devices are protected with antivirus, disk encryption, automatic device blocking, and regularly updated security patches.

Corporate culture

airSlate runs background checks and signs confidentiality agreements with all employees. We also provide training in Information Security and Secure Development Practices.

Elevate your security with airSlate

At airSlate, we take your data security seriously. We are committed to providing you with enterprise-grade security and helping you meet compliance requirements.

Our goal is to maintain the reliability of our platform while remaining transparent about our security practices.