Security

Protecting your data is our first priority

Honestly is ISO 27001 certified, GDPR compliant and hosted in Germany

ISO 27001 certified

Honestly meets the highest standards for data security. We have achieved ISO 27001 certification for our information security management system, an internationally recognized standard for information security. The standard sets requirements for implementing, monitoring, and continually improving our system, helping us to minimize risks, comply with legal requirements, and earn the trust of our customers.

GDPR compliance

The General Data Protection Regulation (GDPR) is a regulation passed by the EU that was enforceable in May 2018 and marks one of the most ambitious steps towards protecting data of individuals.

Honestly is fully GDPR compliant and thus provides safeguards to protect your data by design and by default, adhering to the highest standards of data privacy.

System redundancy and instant recovery

All server capacity (hardware and data) is mirrored at all times for redundant failover capacity. Additionally, all server hard disks are mirrored using a RAID1 system to ensure a swift recovery.

Two-factor authentication and SSO

Two-factor authentication (2FA) is a state-of-the-art procedure to add an extra layer of security in order to protect your data
Single sign-on (SSO) enables your users to login to Honestly without providing additional personal information and instead use your company's login credentials

Honestly provides 2FA and SSO for all enterprise clients.

Auditing, encryption and penetration testing

Honestly provides audit logs for administrator activities and when users access data
We support 256-bit encrypted data at rest and in transit
Steady as a rock: To achieve the highest level of security, Honestly uses independent security companies for regular penetration testing