GFoundry Governance Framework for Information Security

[updated:17-10-2023]

GFoundry is a platform that many companies use, and it takes data security very seriously. This document explains how GFoundry makes sure that data is safe for all its users.

Multi-Company (Multi-Tenant)

GFoundry is a Multi-Company (Multi-Tenant) product, serving diverse organizations. Our governance framework ensures robust information security across multiple companies and tenants. This involves the implementation of role-based access controls, data isolation practices, and stringent security measures to prevent unauthorized access to each company’s sensitive data.

SaaS (Software as a Service)

As a SaaS platform, GFoundry recognizes that security is a shared responsibility between our platform and our valued users. Our framework defines clear roles and responsibilities for both parties in ensuring the utmost data security. This encompasses data encryption, authentication protocols, and strict adherence to industry standards.

Integration with Existing Platforms

GFoundry seamlessly integrates with various platforms, including ERP systems and communication applications. Our governance framework ensures the secure import and export of data between these systems. Stringent protocols for data encryption and authentication are incorporated into our integration processes to safeguard your information.

Gamification and User Data

GFoundry utilizes gamification and collects user data to enhance engagement and offer rewards. Our governance framework encompasses comprehensive data privacy policies, user consent mechanisms, and data retention policies to safeguard the privacy and rights of our users.

Community Aggregation and Communication

To facilitate internal communication and community aggregation, our framework specifies robust security measures. We address user access controls, content moderation strategies, and mechanisms to prevent unauthorized access to community groups, fostering a secure and engaging environment.

Engagement Thermometer and Organizational Climate Monitoring

Certain features of GFoundry collect sensitive feedback data. Our framework outlines stringent practices for anonymizing, securely storing, and responsibly utilizing this data to drive organizational improvement. This is achieved without compromising the privacy and confidentiality of user information.

Compliance and Auditing

We are committed to compliance with relevant regulations, including but not limited to GDPR. Our governance framework incorporates robust auditing procedures to ensure consistent adherence to security measures. Regular security assessments and vulnerability scans are conducted to uphold the highest standards of data security.

Incident Response and Reporting

In the event of a security incident, our governance framework provides clear and comprehensive guidelines for reporting, investigating, and mitigating the incident. We have defined communication channels for notifying affected parties promptly, ensuring transparency and accountability in addressing security concerns.

Related documents: