Trust Center - Compliance
Compare Security and Compliance of Nitro Products
Nitro has platform of products with security features and compliance. View these features at glance.
Security Features at a Glance
| Feature\Product | Nitro Sign Essentials + Analytics | Nitro Sign Advanced + Analytics | Nitro Sign Premium | Nitro Productivity Pro | Links |
| Security | |||||
| Penetration Tested | Yes | Yes | Yes | Yes | |
| Single Sign On | Yes | Yes | Yes | Yes | |
| Incident Response | Yes | Yes | Yes | Yes | |
| SSDLC | Yes | Yes | Yes | Yes | |
| Identity Management | Yes | Yes | Yes | Yes | |
| Vulnerability Management | Yes | Yes | Yes | Yes | |
| Encryption | |||||
| Encryption of Signatures | SES | SES | QES, SES, AES | Not Applicable; unless using Sign feature. | |
| Data at Rest | Disk Encryption | Disk Encryption | TDE | Configured by customer | |
| Data in Transit | Yes | Yes | Yes | Not Applicable; unless using Sign feature. | |
| Business Continuity & Disaster Recovery | |||||
| BC/DR Policy | Yes | Yes | Yes | Configured by customer | |
| BC/DR Tested | Yes | Yes | Yes | Configured by customer | |
| Privacy | |||||
| Privacy Policy | Yes | Yes | Yes | Yes | |
| Cookie Policy | Yes | Yes | Yes | Yes | |
| Cross Border Data Transfers | Compliant | Compliant | Compliant | Not Applicable | |
| GDPR | Yes | Yes | Yes | Not Applicable | |
| CCPA | Yes | Yes | Yes | Not Applicable | |
| Psuedonymization | Yes | Yes | N/A | Yes | |
| Certifications & Attestations | |||||
| SOC 2 Type 2 | Certified | Certified | Certified | ||
| HIPAA/HiTrust | Assessed | Assessed | Assessed | ||
| ISO 27001:2013 | |||||
| EMEA | Certified | ||||
| Australia | Conforms with ISO 27001:2013 | ||||
| United States | Conforms with ISO 27001:2013 | ||||
| Qualified Trust Service Provider | |||||
| EMEA | Validation Service - Certified | ||||
| Australia | Validation Service - Conforms | ||||
| United States | Validation Service - Conforms | ||||
| Data Center Security | |||||
| Microsoft Azure - US | https://docs.microsoft.com/en-us/azure/compliance/ | ||||
| Microsoft Azure - AUS | https://docs.microsoft.com/en-us/azure/compliance/ | ||||
| Microsoft Azure - EMEA | https://docs.microsoft.com/en-us/azure/compliance/ | ||||
| Amazon Web Services - US | https://aws.amazon.com/compliance/data-center/controls/ | https://aws.amazon.com/compliance/data-center/controls/ | |||
| Amazon Web Services - EMEA | https://aws.amazon.com/compliance/data-center/controls/ | https://aws.amazon.com/compliance/data-center/controls/ | |||