"At Esoft we take data security and the protection of personal data very seriously. We want to be the safe choice for you and your clients. With the following information we aim to showcase what we have done to meet this commitment and prove that we care about delivering secure and GDPR compliant platform."
Kasper Hundborg Hansen, CIO at Esoft
GDPR Compliant
Our cloud platform solution is developed in the GDPR era, hence the principle of Privacy by design is an integral part of our cloud platform solution. In the development of the solution, we have focused on securing data subjects and enabling data subject to excercise their rights.
In addition, we are constantly further developing the cloud platform with solutions and features that help our customers to comply with their obligations, e.g. by improving search, deletion, and data minimization features, and much more, making GDPR compliant use of the cloud platform easy.
To document our commitment to a high level of security we are audited by an independent third-party auditor to verify our compliance with the IS027001 standard.
Esoft is committed to providing cutting edge solutions, built on the latest technology. The recent developments in Artificial Intelligence ("AI") offers new possibilities in the realm of real estate media.
Esoft is an earlier adopter, and is exploring all possible venues where the powers of AI can provide better products and services to our customers, while still employing "safety first" approach to incorporating all new technologies.
All technologies are subject to a thorough legal and technical review before even any testing begins. This ensures that anything that makes it to production, is safe, trustworthy and compliant.
See our AI policy
Customer Personal data
Esoft Group companies processes a very limited amount of personal data in the delivery of our products and services:
The contact information necessary to facilitate an on-site visit from our photographers
Any personal data that you may have on display when the photographer captures the real estate
See our Privacy Policy
Esoft has a vendor-agnostic approach to cloud and solution providers, prioritizing security, features, and value over the ease of using one vendor.
In addition, this approach reduces vulnerability to vendor specific down-time and ultimately, reduces the cost for our customers.
Learn more
Trust and confidence in our ability to safely process our customers data is of upmost importance to Esoft and EFKT given the close ties this has to any customers wanting to do business with us.
Some of our security measures include:
Suppliers
Use of suppliers being sufficiently certified based on recognized standards such as ISO 27001:2013, 27017:2015, 27018:2014 and ISO 9001:2015, and use of suppliers being able to guarantee processing within EU/EEA data regions.
Redundancy
Full redundancy setup with main hostingand operations provider to ensureaccess and continuous operation of theCloud platform.
Encryption
Full TLS and HTTPS encryption of data intransit and in rest.
Backup and anti-malware
Daily backup and updated anti-malwareand anti-virus on all systems and devices.
Hardware reuse
Hardware reuse is done by restoring factory settings only, and hardware destruction is done according to market standards for this, so data recovery is not possible.
Logging
Logging of access and actions in the platform and systems.
Procedures
Procedures for access to production environment and access to customer data.
Physical security of sites
Physical security of sites with individual access keys and codes as well as monitoring of facilities.
Network
Segmented and encrypted network and connection to Security Operation Center (SOC) via hosting provider.
Use of MFA login
Use of Multi Factor Authentication login for the platform and production environment.
Continuous platform checks
Ongoing checks of the platform and systems to verify the PoLP, as well as testing of systems by an ethical hacker.