Security Practices

Network and Data Center Security

Data security starts with physical access to the servers where your data lives. Mi4 only uses data centers that meet the following compliance standards:

  • SOC 1/SSAE 16/ISAE 3402 (formerly SAS 70 Type II)
  • SOC 2
  • SOC 3
  • HIPAA
  • ISO 27001
  • ISO 27018
  • PCI DSS v3.0

 


Software Security

Mi4’s software is developed using up-to-date secure coding guidelines and industry standard best practices. These guidelines emphasize secure forms of authentication, session management, cryptography and function level access control. Any third-party components are vetted and validated.

 


Application Security

Our software undergoes post deployment security tests and is continuously patched/upgraded to remain secure. Our applications use security best practices such as user-based permissions, process isolation, and application-only access to any databases.

 


Privacy Policy

Your data is for your organization only. We do not provide customer data (anonymous or otherwise) to any third parties without expressed written consent. Please see our privacy policy for further details.