How is personal information protected on Sugar cloud?
SugarCRM has put in place plans to protect our customers’ data in the cloud and has the processes necessary to perform our obligations as data processor.
- We have implemented policies, and plans to continue to implement further policies and reasonable measures, necessary for securing personal data and for mitigating potential negative consequences for data subjects.
- In the event of a data breach, we will have policies and procedures in place to notify our customers.
- We are implementing the necessary technical and organizational measures, including logical access, physical access, intervention control, transfer control, input control, separation control, availability controls, change management, logging, monitoring, restoring and encryption.
- We intend to process the personal data as necessary to perform our obligations in accordance with GDPR. We further plan to document all records of processing activities such as backups and its maintenance, logging, monitoring and testing activities.