At BizMerlin, we know that our customers rely on us as an important part of their business processes and record keeping. We take our responsibilities to our customers seriously, and the security and reliability of the software, systems, and data that make up the BizMerlin application are our top priority.
All of our security controls and risk analysis are based around the premise of protecting customer data. In addition to encryption, our customer data security controls include:
Third-party certifications and audits are an important component of any mature security program. We have a number of respected third-party agencies that certify and audit our environment.
BizMerlin’s certifications, compliances, and audits include:
BizMerlin hosts its data using Amazon Web Services (AWS), which is also SOC 2 certified.
BizMerlin has achieved EU-US & SWISS-US PRIVACY SHIELD certification with the US Department of Commerce.
BizMerlinHR cloud is hosted in AWS environment using services that comply with ISO/IEC 27001:2013, 27017:2015, 27018:2019, and ISO/IEC 9001:2015 and CSA STAR CCM v3.0.1.
Our comprehensive GDPR program is supported by key privacy principles — Accountability, Privacy by Design and Default, Data Minimization, Subject Access Rights, among others. Below are some aspects of the GDPR program at BizMerlin, and how our products support customers in meeting their compliance obligations.
Read BizMerlin’s Commitment to GDPR.
BizMerlin is registered in the Commonwealth of Virginia, United States of America. Company headquarters are in Reston, Virginia. For more details, please see the contact page. BizMerlin operates under the laws of the Commonwealth of Virginia and the federal regulations of the US.
BizMerlin uses Amazon Web Services (AWS) resources located in many different regions.