ABM Inventory provides its customers with control over their content with simple but effective tools. These tools provide ABM Inventory customers with the ability to control their users' access to ABM Inventory, as well as control where their content will be stored (on our cloud service across the EU territory), to ensure its security during transmission and storage (for this purpose, ABM Inventory has implemented HTTPS traffic encryption and solution database encryption).
Our company implemented reliable and comprehensive technical and physical control tools designed to prevent unauthorized access to user content or information disclosure.
ABM Inventory ensures that our software products used by our customers to store and process sensitive data allow them to implement the standards of working with confidential data in their organizations in accordance with the Global Data Protection.
The EU General Data Protection Regulation (GDPR) was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy. The regulation replaces the Data Protection Directive 95/46/EC and will be in force May 2018.
As an organization acting as a data processor, ABM Inventory commits to the following obligations:
Customers independently control access to their content in the ABM Inventory service. In order to effectively complete this task, ABM Inventory provides an extended set of tools for access control and logging. We do not use access to customer content, except the cases when it is required by law and when it is necessary for the ABM Inventory service support and its provision to our customers and end-users.
Customers choose in which regions their content will be stored. We do not move or copy content outside the selected regions, except the cases when it is required by law and when it is necessary for the ABM Inventory service support and its provision to our customers and end-users.
Customers choose how their content will be secured. We provide our customers with a reliable means of encrypting user content for its safe transfer and storage but do not provide the ability to use their own encryption keys.
We do not, under any circumstances, disclose the content of customers, except the cases when it is required by law or by a valid mandatory order issued by a government or other regulatory body. Before disclosing the content, ABM Inventory notifies its customers so that they can prevent disclosure, except the cases when such notice is prohibited or when there is clear evidence of illegal activities related to the use of the ABM Inventory services.
We have developed a security program using the world's best practices for data protection and privacy to help our customers create and manage a security management environment. These security and management processes have been repeatedly verified by independent third-party specialists, as evidenced by the ISO / IEC 27001: 2013 certificate of conformity granted to the cloud service and the ABM Inventory software.