Security at Sparrow
Sparrow utilizes enterprise-grade best practices to ensure our customer’s security.
Our security commitment
At Sparrow, customer trust is our top priority.
We maintain the highest standards of data privacy and security because we know your employee data is important to keep secure. Sparrow undergoes regular penetration testing and security reviews, and encrypts data at rest and in transit.
Our customers entrust sensitive data to our care. Keeping it secure is our promise.
The Sparrow Team
Data is encrypted in-transit using bank-grade TLS 1.2. Data is encrypted at-rest.
Data Permissions & Authentication
Access to customer data is limited to authorized employees who require it for their job and data access is logged.
SOC 2 Type I
Sparrow is SOC2 compliant. Sparrow has been audited by an independent firm who has confirmed that Sparrow meets the requirements set forth in TSP section 100, 2017 Trust Services Criteria for Security.
Security breaches will be communicated within 72 hours, and vulnerabilities are fixed ASAP.
SOC 2 Type I
Sparrow is SOC2 compliant. Sparrow has been audited by an independent firm who has confirmed that Sparrow meets the requirements set forth in TSP section 100, 2017 Trust Services Criteria for Security., Availability, Processing Integrity and Confidentiality.
Sparrow works with industry leading security firms to perform annual network and application layer penetration tests.
Security is a company-wide endeavor. All employees complete an annual security training program and employ best practices when handling customer data.
Secure Software Development
Sparrow utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.
Sparrow Responsible Disclosure Policy
Data security is a top priority for Sparrow, and Sparrow believes that working with skilled security researchers can identify weaknesses in any technology. If you believe you’ve found a security vulnerability in Sparrow’s service, please notify us; we will work with you to resolve the issue promptly.