BACK

One of the most consistent and popular questions we get from prospective customers centers around security, specifically the security of our customer's data. With hacking scandals, photo leaks, and breaches in consumers credit cards data making headlines almost weekly, it's not hard to see why this is such a big concern. We are committed to the security of your data, and outlined below are some of the innovative ways BrightGauge works to keep your information safe.



  • Security Is A Daily Priority: We believe security is integral to the success of both our business and your business, so we have integrated it into our everyday operations.  Therefore we are constantly reviewing our security and evaluating ways to improve our security.  Security has been top of mind since day one since both of BrightGauge's co-founders have a background in information security, having worked at another Dosal Capital operating company, Compuquip Technologies which is a leader in the IT infrastructure security space.

  • Leave Infrastructure Management To The Experts: When we founded BrightGauge, we decided to make software development our primary focus and core competency. It's what we were best at as a team. By focusing on development, we looked to an outside expert to help us with IT security, and we decided to host all our infrastructure, physical controls, and network security with Amazon Web Services (AWS) in their US East Region.  AWS has a fleet of network security professionals who monitor and manage our infrastructure 24/7, allowing us to focus on software development and customer service.  All of the AWS infrastructure adheres to the latest security compliance guidelines, and goes above and beyond what we could manage and provide on our own. You can learn more about AWS and security compliance here.

  • You Control The Data We See: It's entirely up to you, as a BrightGauge customer, to determine what kind, how much, and what type of data our platform accesses. As part of the implementation process for on premise data sources, we request that you establish a database user to get access to the database. However, we require it to have "Read Only" access, so our team is unable to write to your database.  Essentially, the "Read Only" database user allows our agent to pull the data we need to create our default datasets.  The default datasets, comprised of the most efficient, effective, and popular benchmarks, allow you to get up and running without having to build your own queries.  If you decide you want to change the data our team has access to, we can help you edit, expand, or streamline the default datasets to limit or expand what information is pulled.

  • We Use Our Proprietary Agent To Query Your Database: As part of our on premise data source implementation process, you will download our BrightGauge Agent and load it to your local network. Using the access created by the database user, we can efficiently, effectively, and securely transmit your data and information. Our proprietary agent does only two things, take SQL queries from BrightGauge and query the database locally to grab data quickly, and encrypt that data and send it back to BrightGauge on regular intervals.

  • Send Data Securely: Our proprietary agent creates a secure SSL Tunnel between itself and the BrightGauge web servers.  In order to add another layer of security, we ask our customers to open up a port in their chosen firewall and lock it down to our IP addresses. We only provide the IP addresses to our customers. Once a customer locks down that port, we have a secure channel to communicate the encrypted data. Additionally, we have measures in place to ensure that the data transmission goes smoothly. If the query starts to deliver too much data, our system rejects the query and stops the connectivity before your database becomes vulnerable to any issues.

  • Storing Your Data: We use two types of databases at BrightGauge, and they are very well protected. In an effort to minimize any extraneous information that could be compromised, we only store the data for reports you have sent (under your control) and data between refresh cycles.  The data being refreshed is always visible to our customers and the default datasets can be added, removed, or edited at your discretion.

If you or anyone on your team has any additional questions about security please feel free to contact us and we can set up a call with our team to discuss in detail.  You can get in touch by visiting: Get In Touch About Security

 

Free MSA Template

Whether you’re planning your first managed services agreement, or you’re ready to overhaul your existing version, we've got you covered!

Grab your copy