Big data is tough. We get it.
From day one, Glassbox was designed and built as a big data solution for data-sensitive environments. Our team is constantly working to improve our technology and processes to address the privacy and security of our customers and their end users in accordance with the strictest standards and best practices.
It is our philosophy that privacy and transparency are key to compliance. As such, Glassbox products are configured out-of-the-box not to capture customer inputs including sensitive
information such as payment card information (PCI), personal health information (PHI) and personally identifiable information (PII).
Our high security standards are examined on a biannual basis, and we are both SOC 2 and ISO 27001 certified—in fact, Glassbox is the first and only digital experience analytics provider to receive the ISO 22701 certification for our privacy management framework. Glassbox is also compliant with major privacy protection regulations including HIPAA, GLBA, PCI, CCPA and GDPR.
With data masking, data that is captured and sent during a session is masked and anonymized using encryption. It is only visible according to predetermined rules or roles that you configure. You can restrict data access to specific roles within your organization, according to your business needs and the principle of least privilege.
All data is encrypted at rest and transport. Configuration files within the Glassbox system are encrypted at all endpoints (including our clients’ websites and mobile apps).
Privacy is built into the product and architecture of all Glassbox services and business practices. Privacy is an essential component of the core functionality of our product and is at the core of all our business practices.
Our default settings are configured for the maximum degree of privacy by ensuring that personal data collection adheres to the principle of data minimization.
Customer data helps your business thrive by offering the products, services, and experiences that your customers truly want, when they want them. The digital collection of personal data has never been under closer scrutiny.
Built for data-sensitive environments, Glassbox understands that the security of the data collected and stored by our customers is nothing less than critical. To deliver the peace of mind that our customers deserve, we apply four layers of security.