Keep your data safe and private

Google Cloud consists of Google Cloud Storage, an enterprise solution for developers, and Google Drive, a solution built for Google Workspace (formerly G Suite) users and personal use. Google Cloud is a very secure way to store and transfer private and organizational data. Google Cloud’s security model keeps your data secure and compliant. The files added to the app of Google Drive are stored on servers in secure data centers. With Google Cloud storage all data is encrypted during the transfer and while stored on the Google servers. Furthermore, the security team of Google works 24/7 making the data centers one of the safest places for data to live.

Google uses security protection so all your data is stored and transferred securely. The most important layers of this security protection are:

• Physical security-Data center: Google’s data centers are highly secure by using 6 layers of security to prevent any unauthorized access.
• Custom hardware and trusted booting: By designing and building every element in-house Google protects itself against any security attacks named “privileged access attacks”.
• Data disposal: The data destruction process for persistent disks and other storage devices involves several steps and is audited by Google regularly.
• Data encryption: By default, all customer data is encrypted - while storing and transferring. The encryption is automatic, and it requires no action on the user’s part.
• Secure service deployment: A service refers to the application binary that a developer writes and runs on infrastructure.
• Secure interservice communication: Inter-service communication refers to GCP’s resources and services talking to each other.
• In-built DDoS protections: Precautions against Distributed Denial-of-Service attacks are already built into many GCP services.

ISO 27001 is the international standard for information security management systems and was developed to handle information security. ISO 27001 helps organizations to protect sensitive information like employee and client information or other private information in a systematic and cost-effective way by using an information security management system.

Companies can get an ISO 27001 certification to prove to their customers and partners that they follow best practices of information security and safeguarding data.

GDPR stands for General Data Protection Regulation and is about Europe's new data privacy and security laws. The regulations cover hundreds of pages about new obligations and requirements for organizations around the world and how they have to target or collect data related to people in the EU.

The GDPR imposes obligations on organizations worldwide on how to collect and protect personal data and privacy of citizens living in the EU. GDPR compliance is a requirement for every organization that collects and stores personal data. Non-compliance results in penalties of up to millions of euros.

SSO stands for Single Sign-on. SSO authentication enables users to use one set of login credentials to securely authenticate with multiple apps and websites.

With SSO authentication several different application login screens are combined into one. The advantage of SSO is that users only need to enter a one-time username and password to access all websites, software, or apps. There are 6 steps to understand:

• The user arrives on the website (app or software) he wants to use
• The site sends the user to a central SSO login tool and the user needs to sign in with a username and password
• The SSO domain authenticates username and password, validates the user, and creates an authentication token that remembers that the user is verified
• The user is sent back to the original site, and the token acts as proof that they’ve been authenticated
• Any app the user accesses will check with the SSO service
• This grants the user access to associated websites, apps, or software that share the central SSO domain

Happeo promises top-notch intranet security for your organization. In May 2019 Happeo got the ISO 27001 certification which is the international standard for best practices in IT security management systems. The certification reflects that Happeo is committed to maintaining rigorous security processes and protocols that keep your organization's data secure.

Happeo has obtained the ISO 27001 certification, a certification for security standards that secures that Happeo maintains the most important intranet security processes and protocols. Furthermore, Happeo was audited by the global specialist in testing, inspection, and certification (TIC) Kiwa Inspecta, who classified Happeo as trustworthy. The overall goal of TIC is to create trust in products, services, processes, management systems, and people's performance.