Fliplet security systems

Security is a core part of Fliplet’s product and operating procedures. Fliplet works with many large blue-chip clients and consequently we’ve designed our security systems to meet or exceed their requirements.

We’ve worked with very large enterprise companies since 2013. Every year, over 1,500 apps are created with Fliplet, and over 3,500 updates pushed. You can trust we have the experience to deal with your security requirements.

Fliplet is fully compliant with ISO27001, which is the international Standard for Information Security Management System, and Fliplet has obtained its ISO27001:2013 Certificate on 6 December 2021 after a formal external audit. ISO27001 sets out the specification for an information security management system (ISMS).

We carry out third-party audits on an annual basis as a minimum, and welcome audits from current clients, including penetration testing.

Every software change and update carried out on Fliplet is thoroughly assessed for risks, stored in a version-controlled repository and peer reviewed.

All connections to Fliplet communicate using a secure connection via HTTPS with a 256 bit SHA certificate via SSL cryptographic protocol, and data at rest in Fliplet’s production database is encrypted. For information about the many other ways we secure customer data, contact our sales team.

Fliplet is committed to protecting our clients’ data and assisting them in meeting their data protection regulations. We comply with the European Union General Data Protection Regulation. Under GDPR Fliplet is considered a Data Processor and Fliplet’s clients are typically considered to be Data Controllers. Fliplet meets the security measures set out in the GDPR and will assist its clients with technical and organisational measures, where possible, in meeting their obligations.

Data source security is available for all accounts and can be used to protect and control access to a data source. To learn more about this security feature see here. Fliplet recommends any apps that include data sources with sensitive information, such as a list of users, should ensure the data source settings are set to exclude this data when downloading the app. This ensures that the data source will not be included when downloading your app and instead, data will be loaded from the server separately and will require an internet connection. For more information, see our app security help guide.

Fliplet has an explicit commitment to help customers apply the level of security they need in order to meet their company’s standards, and extensive options to meet them, from distribution via public or enterprise app stores to access protection via authorised lists, domain or email authentication and single-sign-on and beyond. Please see our how to test security for your apps guide for more information.

Fliplet utilizes services provided by its hosting provider to distribute its production operation across at least six separate physical locations. These six locations are within two geographic regions, in order to protect Fliplet’s service from loss of connectivity, power infrastructure and other common location-specific failures. Fliplet also retains a full backup copy of production data on both geographic regions on a separate infrastructure. Full backups are saved as snapshots to this location once per day and transactions are saved continuously and snapshot every 5 minutes.

If you need any further information please don’t hesitate to contact us at hello@fliplet.com