Trust And Security

SmartSuite is safe and secure

Because your trust and security is paramount to us, we’ve engineered the SmartSuite work management platform following industry leading standards.

Monitor and play icon
Data Encryption

All communications with SmartSuite are HTTPS encrypted, and data at rest is encrypted with the AES-256 algorithm.

Key icon
Security Lifecycle

Security is a fundamental part of SmartSuite’s application development lifecycle and is incorporated into the design, development, testing and deployment processes.

Stacked folders Icon
PCI-DSS

SmartSuite runs on the PCI compliant AWS platform, leveraging secure tools and platforms to ensure that all transaction data is protected.

Notebook icon
Security Monitoring

SmartSuite monitors security 24/7 and leverages a variety of detection tools and services to ensure that the platform is safe, secure and always available.

Rocket icon
Strong Authentication

Two-factor authentication (2FA) and SAML-based Single Sign-on (SSO) are supported for Enterprise subscribers.

Car Icon
Privacy

SmartSuite adheres to a strict privacy policy and is GDPR-compliant to ensure that your personal data is always protected.

Separation line

Enterprise Grade Security and Compliance

Advanced permissions and roles put you in control of data access, and our secure AWS-based platform makes user experiences seamless while maintaining security. Robust history logging and audit features, coupled with recycle bin soft-delete and login tracking ensure that you always know who modified your environment or data.

Man holding a lock circle
Shield Icon

Permissions

User access controls control system modification and data access rights

Shield Icon

Activity History

Changes to SmartSuite structure and content are logged with user and date

Shield Icon

Recycle Bin

All deleted files and structures (such as fields) can be restored from the recycle bin

Shield Icon

Login History

User logins are stored, including source IP address and times stamp

Shield Icon

Active Sessions

Admins can view active sessions and length, and can terminate sessions

Shield Icon

AWS Enviroment

SmartSuite runs on the AWS cloud platform for the best in security and availability

SmartSuite ISO 27001 certification

ISO 27001

Our ISO 27001 certification, awarded by the International Organization for Standardization (ISO), recognizes the strength of our information security management system. It's a clear indicator of our commitment to adhering to globally recognized best practices for protecting sensitive information. ISO 27001 certification isn't just a checkbox for SmartSuite; it's a strategic investment in your data's security.

Learn more

SmartSuite ISO 27001 certification

SOC-2

In addition to ISO 27001, SmartSuite has also earned SOC-2 Type 1 compliance, certified by the American Institute of CPAs (AICPA). This certification stands as proof of our dedication to securing your data while it resides within our systems. Additionally, SmartSuite has begun its SOC-2 Type 2 monitoring period, which ensures that our security protocols aren't just implemented but consistently maintained over time.

Learn more

SmartSuite is powered by the secure AWS platform

AWS Cloud
Platform

For your uncompromising security, SmartSuite is hosted by Amazon AWS, which supports more security and compliance certifications than any other Cloud vendor, including: PCI-DSS, HIPAA/HITECH, FedRAMP, FIPS 140-2, NIST 800-171 and GDPR.

Learn more about Amazon’s compliance programs.

Advanced permissions ensure the right people have access

Advanced
Permissions

Easily restrict access by member and team or use advanced settings to assign Admin, Editor, Contributor or View-Only access to teams or individuals.

Flexible authentication options support your organization's needs

Authentication

Methods

SmartSuite supports secure cloud authentication using Google, Microsoft and Apple accounts to reduce the burden of login for users. Available for Web and mobile (iOS and Android), this option allows for the use of existing accounts to log in to SmartSuite - no need for an additional password.

Secure your account with two-factor authenticaion (2FA)

Two-Factor
Authentication

Professional and Enterprise accounts come with an added layer of security by requiring additional information in addition to a username and password. Users have the option to receive a text message on their mobile device or use a code from an authentication app to complete their login process.

SmartSuite
Security Policy

SmartSuite has a formal security policy that is followed across the organization, and all employees, partners and contractors are required to adhere to its standards.

SmartSuite Security Policy