Meetingflow Security

At Meetingflow, we have decades of experience delivering secure enterprise SaaS to numerous industries. Our priority is to offer industry-leading security to keep your data safe. We are proud of our approach and will continue to prioritize security at each step.

Data Minimization

Meetingflow follows the principle of data minimization and only stores what is needed to provide the service, for example, customer data created or saved by the user. Calendar, CRM, and other integration data are generally ephemeral for specific use cases, such as being used in a specific meeting, and are only stored as needed in Meetingflow. Meetingflow may store contact information from integrations as a convenience for auto-completion of contact names and other functions.

Secure Services

All customer data within our application is managed with stringent security and privacy measures.

• For direct compute operations, we exclusively utilize Microsoft Azure Cloud Computing Services, which comply with industry-leading standards such as HIPAA, ISO 27001, SOC 1, SOC 2, and SOC 3, among others, ensuring a robust, secure, and fault-tolerant cloud-based architecture designed for high-scale usage.
• We also engage third-party services to augment our offerings. These third-party services are SOC 2 certified (or compliant, with pending SOC 2 certification), and all operate utilizing infrastructure compliant with industry-leading standards such as SOC 2. 

Examples of some of our security controls include: 

• Data is encrypted in transit and at rest using the latest and appropriate encryption approaches.
• Users have clear opt-in controls that put users in control of their data.
• We regularly conduct security reviews for all designs and implementations.

3rd Party Reviews

• Meetingflow utilizes a Google-approved 3rd party security firm for review and penetration testing and addresses any issues discovered based on their level of severity and priority.
• Meetingflow is a verified partner for the purposes of Microsoft 365 calendar integration. The Microsoft 365 Outlook add-in is also verified through the partner marketplace.
• Meetingflow is verified by Google’s OAuth API verification process for integration with contacts and calendars. Meetingflow’s use and transfer to any other app of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Business Continuity, Reliability and Backup

Our customers expect and rely on high availability and performance from Meetingflow. As such we use a 100% cloud-based architecture with fault-tolerant infrastructure designed for high-scale usage.

Meetingflow manages continuous database backups with a seven day point in time restore window and other data storage on a continuous backup with a 30 day restore window. Nightly full backups are encrypted and stored in an offsite location with six month retention.

Other

All full time employees and anyone with access to production code undergoes a background check prior to gaining access. 

Please visit our Privacy Policy for a detailed description of Meetingflow’s privacy practices. 

Have questions? Contact us to learn more at support@meetingflow.com.

Last updated 11/14/23