Data and Security

Data management and privacy policies to keep your data safe from threats

SOC 2 Type 2

SOC 2 Type 2 Certificate Seal

InEvent is certified and compliant with AICPA Service Organization Control Reports. InEvent protects its customer data following the compliance standards provided by AICPA and other governing bodies of data privacy both in the US and Europe. InEvent Certified Public Accountant is A-LIGN.

You may request a copy of this certificate through your selected account manager or customer success manager. Detailed policies can be found below in our Data Management and Privacy sections.

HIPAA

HIPAA Compliance

InEvent is certified and compliant with Health Insurance Portability and Accountability Act of 1996 (HIPAA). InEvent safeguards individual protected health information (PHI) in compliance with HIPAA by treating all PHI as confidential and private.

You may request a copy of this certificate and our Business Associate Agreement (BAA) through your customer success manager.

PCI DSS

Stripe PCI DSS Certificate

InEvent is certified and compliant with Payment Card Industry Data Security Standard (PCI DSS). InEvent protects our customer credit and debit card data using gateway providers such as integrations with Stripe and Paypal. The experience follows all the required steps per the standard and documented APIs.

InEvent only uses and integrates with gateway providers that are fully PCI DSS compliant.

W3C WAI Web Content Accessibility Guidelines 2.1

Level AA conformance, W3C WAI Web Content Accessibility Guidelines 2.1

InEvent follows the Web Content Accessibility Guidelines (WCAG), which makes web content more accessible to people with disabilities. InEvent has currently implemented WCAG Level AA on its products.

You may find more information about InEvent compliance through our Voluntary Product Accessibility Template (VPAT), available through your account manager or customer success manager. You may also access our country accessible compliance page .

EU-US and SWISS-U.S. Privacy Shield Certified

Privacy Shield Certificate

InEvent is EU-US and SWISS-U.S. Privacy Shield Certified. InEvent uses Data Protection Authorities in the EU and US to handle any customer data requests as required.

You may access a digital copy of this certificate using the following link on the Privacy Shield website.

American & European servers

Our servers are located in Virginia, USA and Dublin, Ireland. We follow Data Processing Agreements (DPA) and Standard Contractual Clauses (SCC) with each of our sub-processors. These agreements ensure that each sub-processor is operating in compliance with the GDPR, subject to data processing best practices and other applicable privacy laws. Our Data Processing Agreement is reviewed yearly and satisfies all current GDPR requirements.

OWASP Proactive Controls

Level AA conformance, W3C WAI Web Content Accessibility Guidelines 2.1

InEvent follows Open Web Application Security Project (OWASP) Top Ten security risks and implements the most up to date security standards methodologies.

For a detailed guided on How InEvent implements OWASP Proactive Controls, get the latest copy of our quartely pentest from your project manager.

See which Fortune Global 500 companies already use InEvent solutions

Data technical specifications

Secure access to your data is provided through a series of security policies implemented and enforced by InEvent's top team of experts, including countermeasures such as:

  • Data hosted in top-tier, world-class data center.
  • Limited IP ranges to user level access.
  • Physical token access to authenticate operations.
  • Employee access to limited amount of accounts.
  • Fire detection and suppression systems.
  • Fault tolerant, redundant servers.
  • Isolated end secure client environment.
  • Data encrypted and transmitted via Secure Socket Layers (SSL) technology.
  • Role-based Access Control (RBAC) options for provisioning access.
  • SaaS (Software as a service) support and deployment.
  • Logging and auditing available for read and write operations.
  • Failed login attempts and malicious input monitoring.
  • Secure notifications monitoring to administrators.
  • Unique account/username/password access control.
  • One-way encryption for all passwords.
  • Account lockout and password expiration.
Experience Tomorrow XP Investments

Experience Tomorrow XP Investments

XP Investments and InEvent partnership bring more technology and digital experiences to its private corporate event held at Four Seasons Hotel in Miami.

Santander Annual Meeting

Santander Annual Meeting

How InEvent & Santander created a digital experience at the largest corporate event in the Americas.

One System Conference

One System Conference

Held annually in India, One System Conference proposed the reunion of its global leaders of Coca-Cola Asia to unite, act and grow into a single system.

Software deployment

Your software can be customized to your organization's profile to limit access to external threats, accelerate deployment speed and increase brand awareness.

  • Mobile device management (MDM) support for secure corporate app deployment.
  • Proprietary Google Play or Apple Store accounts for deploys and updates.
  • Available CNAMEs for event url hosts and event directory pages.
  • Email DNS can be used to send emails as aliases from your company's domain.
  • Single sign-on (SSO) support, including SAML 2.0 and LDAP databases for secure authentication between domains.

The complete platform for all your events

Pedro Goes

goes@inevent.com

+1 470 751 3193

InEvent InEvent InEvent InEvent

We use cookies to improve your website experience and provide more personalized services to you across our platform.

To find out more about the cookies we use, see our Privacy Policy.