At OrgChart, we don’t just promise to keep your employee and company data private, safe, and secure — we deliver on that promise with a robust information security program.
We believe proper security is a mindset, not just a checkbox or requirement. Securing HR data that passes through our systems is a core part of our mission, and we secure your data so you can confidently chart your organization.
At OrgChart, we take a proactive approach to information security to keep your data secure and accessible only by authorized people. Security for your data is one of our top priorities, and we have a team dedicated to securing our systems, processes, and controls.
Our goal is not just to meet security standards but to be leaders who set new benchmarks for data protection. Our comprehensive, multi‑faceted strategy mitigates both human and software threat vectors to protect your valuable HR data.
From our enterprise-grade org chart automation tools to our rigorous testing protocols and certifications, we remain committed to ensuring the security and integrity of your organization’s information.
OrgChart is powered by Amazon Web Services (AWS), the industry’s leading provider of secure computing infrastructure.
We use AWS (Amazon Web Services) for all hosting and network infrastructure. AWS best practices ensure our production infrastructure is secured using the latest technologies and techniques.
We use AWS because of its stringent security measures, which include:
You can securely access our products at any time and from any device or location. OrgChart offers a 99.8 percent uptime guarantee to our customers by utilizing redundant/resilient architecture of AWS to eliminate single points of failure and to mitigate risks.
OrgChart maintains up-to-date security documentation and certifications, including a SOC 2 Type II Report. We base our security documentation on the CSA (Cloud Security Alliance) CAIQ framework.
Contact us for more information or to request documentation.
You own your data and retain all rights to it. We respect your privacy and will never make your data publicly available without permission. Reference our privacy policy for more information.
All data transferred between user devices and our servers require an encrypted connection to ensure the privacy of your information. We also employ encryption (AES-256) to protect the secrecy of all data at rest.
OrgChart is committed to CCPA and GDPR compliance and uses an approved framework (e.g., Standard Contractual Clauses or a successor to Privacy Shield) to transfer customers’ data from the EEA, U.K., or Switzerland to the U.S. In addition, all of our sub‑processors utilize the SCCs or Binding Corporate Rules to transfer personal data from the EEA, U.K., or Switzerland to the U.S. We are EU-US Privacy Shield certified.
For our government customers, we offer AWS GovCloud hosting. AWS GovCloud provides FedRAMP Moderate baseline security to protect your data.
Contact us for more information on GovCloud hosting.
