Product safety

Authorisations

Different types of access permissions to data can be fine-tuned down to the smallest detail thanks to groups, access policies and dynamic access control on a unit level.

Transport security

All data sent to and from Lime CRM are encrypted with 256-bit AES-encryption. All endpoints accept only connections via TLS and we only use recognised safe encryption algorithms.

Password

All passwords, API keys and similar confidential information are stored in encrypted format.

Installation media

All software that needs to be installed locally is digitally signed with our code signature certificate to avoid tampering.

Product development

Our developers continuously undergo safety training and take for example OWASP Top 10 into account when developing Lime CRM. Safety critical codes are always reviewed by at least two developers.

Cloud safety

The below mentioned applies if you subscribe to our cloud service.

Data management

Our services are provided by Amazon Web Services’ (AWS) EU-based data centre in Ireland. This is also where your data are stored.

Backup

All data are backed up every day and backup copies are stored for 14 days.

Storage

All data, including backup copies, are stored in an encrypted format even when dormant. Data are stored in separate data bases per customer with unique access to ensure that your data don’t go astray.

Access

Access to customer data is only granted to authorised employees who need it to perform their tasks, e.g. support, and we always ask for consent beforehand.

Supervision

We constantly supervise all operational environments to discover and prevent both operational and safety incidents. If an incident should occur anyway, we have well-documented procedures for how to handle and prevent such incidents in the future.

Safety tests

We continuously search for vulnerabilities in our environments with the help of security tools. Safety testing of products and environments are conducted once per annum.

Other

Training

All employees undergo a mandatory safety training every year.

Security framework

At Lime we have an elaborate and clear framework for information security with policies, practical procedures and continuous follow-up and improvement.

Confidentiality

All our employees have signed a confidentiality agreement covering work with customer data in relation to their employment.

Any questions?

If you have any security-related questions or if you have found a security issue in one of our products, contact our support team at support@lime.tech.