You are viewing our older product's guide. Click here for the documentation of GoodData Cloud, our latest and most advanced product.
Security Shield
Security Shield is the default security package and subscription entitlement of the GoodData platform. It offers industry-standard best practices for protection of customer data, including encryption at rest and in transit, in the highly secure cloud-based GoodData platform according to SOC 2 Type II practices and with the ISO 27001:2013 compliance standard.
Security Shield includes the following:
- Annual SOC 2 Type II Audit - testing Security and Availability principle
- GoodData platform compliance with the ISO 27001:2013 International standard for Information Security Management Systems
- Customer Data segregation on the database level (a dedicated workspace for every client entity)
- Regular workspace backups (see Data Backup)
- On-demand provision of our security compliance documentation:
- SOC 2 report and bridge letter (provided upon request and then annually)
- Cloud Security Alliance self-assessment questionnaire
- ISO 27001 Statement of Applicability
- Results of penetration and vulnerability tests
- GDPR compliance and execution of data processing agreement without “Special Categories of Data”:
- Includes execution of Standard Contractual Clauses
- Includes registration of GoodData with the US-EU and US-Swiss Privacy Shield framework, and an option to use one of the GoodData regional datacenters (see GoodData Datacenters)
GoodData also allows you to increase your security by adopting additional security safeguards including:
- SSO (see Single Sign-On Overview)
- IP whitelisting (see GoodData IP Addresses and IP Whitelisting)
- Custom session expiration (see SST Session Expiration)