Your security matters
At Dots, we take pride in the trust our customers place in us to protect their data. We maintain this through strict access controls, regular security audits, and a strong culture of security awareness across our organization. This means all your data is always private, and is accessible only to you and the people you explicitly choose to share data with.
Security-first approach
Our platform, born from our client’s feedback, delivers the features and
flexibility needed to excel in a dynamic work environment.
Data encryption
Dots’ data transfers are secured with TLS encryption, customer data is protected using AES-256, and Personal Identifiable Information is encrypted at the code level.
Web application firewall
Dots use Web Application Firewall (WAF) to shield our application from external threats. Additionally, we support Google and Microsoft logins, along with other Single Sign-On (SSO) options.
User-controlled
You have the freedom to delete your data at any time. Your procurements and assets data is private by default and will not be shared with attendees without your explicit consent.
We are SOC 2 Compliant
Service Organization Control 2 (SOC 2) is a highly regarded audit standard that concentrates on the controls associated with the security, availability, processing integrity, confidentiality, and privacy of service providers. Achieving the SOC 2 certification indicates that our company has been subject to a thorough examination of its internal controls and data protection measures by an independent auditor.
FAQs
Who has access to the data?
You retain ownership of all your data, encompassing employees, locations, equipment, and assets. Non-administrative users do not have default access to this data. Access is granted solely with the consent of an administrator.
How can I delete all of my data?
You can request at any time that Dots securely delete your data. Our team strives to complete this within 30 days of your request, although it typically takes us about 5 days on average.
Is Dots SOC2 certified?
Dots is SOC 2 type 1 compliant, we are currently working on type 2 compliance
How long is data saved?
We securely store and encrypt your data, ensuring it is always accessible to you. Logs are retained for up to three months or until you specifically request their deletion or close your account. Once data is returned to Dots, none of it is retained by our sub-processors.
We will delete your personal information either when it is no longer necessary or upon your request.
Is Dots compliant with GDPR?
Dots is actively adopted by both individuals and teams within major organizations that rigorously adhere to the General Data Protection Regulation (GDPR).
If you reside within the European Union (EU) or the European Economic Area (EEA), you possess specific data protection rights under the GDPR. Learn more . We strive to provide measures that enable you to modify, rectify, erase, or restrict the utilization of your Personal Data. See also the Dots Privacy Policy.
If you want it to be removed any data from our systems, please email us at [email protected].
Want to know more of how we protect your data?
We do not rent or sell your personal data, including data provided to us by a third party service, such as Hibob, Jamf, or any other partner, in personally identifiable form to anyone.
Who are your data sub-processors?
Our trusted partners & sub-processors are committed to upholding the highest standards of user security and privacy, and are carefully vetted before being included in the Dots ecosystem.
Want to know more
of how we protect your data?
We use the highest security standards and enable users to erase data effortlessly, applicable to individual employees, IT equipment or all user data. If you have any additional questions about data protection or security that are not addressed here, please feel free to contact our data protection manager via email.