Our Commitment to Security
Supporting Industry Standards and Best Practices
Evergent is committed to security and the privacy of consumer data. We employ the most rigorous security measures available, and we have a culture of security awareness throughout our organization.
Our security philosophy follows these principles:
- We build in security from the start and continually review and enhance on a regular basis
- We protect against human error and misuse of insider access
- We maintain current certifications with a third-party audit
- We secure sensitive data in transit and at rest
- We constantly are training and educating our staff, partners and clients
Evergent deploys proven security measures to protect our partners, customers and the end- user consumers to keep information secure. Evergent has invested in security initiatives to ensure that we are delivering the highest protection possible – from payment and financial information to personal identifiable information.
The benefits of software-as-a-service (SaaS) revenue and customer management are overwhelming but security can be a concern. Evergent’s solution focuses on always-on, high-availability and flexibility, elastic scalability, low cost, global reach — all while providing military-grade security. Here are examples of our security measures in place today.
Security and Privacy Certifications
Evergent complies with industry standards for protecting credit card data and customer privacy. Here are some of the industry standards we support:
- PCI-DSS — The comprehensive Payment Card Industry Data Security Standard provides detailed guidance on vulnerability testing, data encryption, access control and security policies.
- SSAE 18: SOC Type I & I Type II — (Statement on Standards for Attestation Engagements) Type II: This certification attests that data used in financial reports meets stringent security, auditing and operational requirements.
- ISO/IEC 27001 — An information security standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). This standard systematically examines the organization’s information security risks, taking account of the threats, vulnerabilities, and impacts; provides a coherent and comprehensive suite of information security controls and risk treatment to address those risks that are deemed unacceptable; and an overarching management process to ensure that the information security controls continue to meet the organization’s information security needs on an ongoing basis
- EU Safe Harbor — If you do business internationally, you’ll want your cloud billing vendor to be certified in the European Union’s Safe Harbor Principles, which safeguard customers’ personal data
- GDPR — General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
Supporting Industry Best Practices
Evergent has a dedicated security team that employs the industry’s security best practices. We conduct ongoing vulnerability scanning and security patches. This activity demands specialized expertise and requires ongoing enhancements that enterprises may not have available.
Flexibility and Global Reach
Evergent also has deployment flexibility. We offer a complete range of deployment options — multi-tenant, single-tenant, public or private cloud and even hybrid environments that give you the best of both worlds: the versatility of the cloud with the heightened security of on-premises systems.
Evergent works with Amazon Web Services to host our SaaS application worldwide.Together we provide ‘layered’ security across all zones. AWS Cloud security benefits include data center and network architecture built to meet the requirements of the most security- sensitive organizations. An advantage of the AWS cloud is that it allows customers to scale and innovate, while maintaining a secure environment. You get the security you need, but without the upfront expenses, and at a lower cost than in an on-premises environment. Evergent also works with customers to deploy on Microsoft Azure, Google Cloud, and AWS Outpost environments as needed.