At Mesh, customer trust is our #1 priority.
We maintain the highest standards of data privacy and security because we know your employee data is important to keep secure. Mesh undergoes regular penetration testing and security reviews, designed to be GDPR compliant, and encrypts data at rest and in transit.
Our customers entrust sensitive data to our care. Keeping it secure is our promise.
Mesh uses Amazon Web Services (AWS) for the hosting of staging and production environments. AWS data centers are monitored by 24×7 security, biometric scanning, video surveillance and are SOC 1, SOC 2, and SOC 3 certified.
Data is encrypted in-transit using bank-grade TLS 1.2. Data is encrypted at-rest using 256-bit encryption via native AWS capabilities.
Single Sign-on (SSO) allows you to authenticate users in your own systems without requiring them to enter additional login credentials. All our plans include SSO via SAML 2.0 and Oauth at no extra cost.
Access to customer data is limited to authorized employees who require it for their job and data access is logged.
Security breaches will be communicated within 48 hours, and vulnerabilities are fixed ASAP.
Mesh is GDPR compliant. Organizations in the EU or who employ EU-based individuals can rest assured that Mesh is handling their personal information in compliance with the latest EU laws.
Mesh is SOC2 compliant. Mesh has been audited by an independent firm who has confirmed that Mesh meets the requirements set forth in TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity and Confidentiality.
Mesh works with industry leading security firms to perform bi-annual network and and application layer penetration tests.
Security is a company-wide endeavor. All employees complete an annual security training program and employ best practices when handling customer data.
Mesh utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.
Data security is a top priority for Mesh, and Mesh believes that working with skilled security researchers can identify weaknesses in any technology. If you believe you’ve found a security vulnerability in Mesh’s service, please notify us; we will work with you to resolve the issue promptly.
Customer data is stored in the United States. We use Standard Contractual Clauses (SCC) to cover regulatory requirements for European customers.
Mesh employs a variety of technical and organizational controls to keep customer data secure.
All data is persisted in a database that has transaction logging enabled and is fully backed up daily.
Mesh works with all modern browsers without any plugins
Mesh allows us to have a 360 evaluation of our employees with utmost accuracy, bringing transparency and visibility to the company.