Watch Demo

Compliance and Security

Kimble and Salesforce : Ready for the completion of Brexit Transition

Kimble and Salesforce have already taken the necessary actions, to ensure the continuity of their services from 1st January 2021 once the UK has left the European Union (EU).

Click here for more information about Kimble & Salesforce’s readiness for Brexit

Independent Audit – Service Organisation Controls (SOC)

Kimble meets or exceeds the standards of SSAE 18 (SOC1 Type II) and has passed an independent external audit every year since 2015, with no exceptions noted.  Our internal control framework is regularly assessed for both the ‘adequacy of design’ and for ‘operational effectiveness’ in order to ensure the highest possible level of compliance.

Click here for more on Kimble passing SOC1

Information Security / Data Protection

Kimble is committed to protecting the privacy of your data and users. Kimble was one of the first Salesforce Independent Software Vendors to launch a General Data Protection Regulation compliance program in early 2017, which successfully completed prior to the May 2108 deadline. Kimble acts as a Data Processor, under the General Data Protection Regulation (EU 2016/679) (“GDPR”).

Click here for Kimble’s Privacy Policy
Click here for Kimble’s approach to GDPR

The key Information Security benefits for adopting Kimble include:

  • ‘Privacy By Design’ Principle

    By not storing any financial or sensitive information, and keeping other personal data to an absolute minimum.

  • Salesforce Platform

    Kimble leverages the Salesforce platform strengths as one of the world’s largest and most secure cloud platform providers.

  • Kimble Product Features

    Including the ability to anonymize resource data and easily support ‘Subject Access Requests’.

  • Data Processing Addendum (DPA)

    We provided a comprehensive GDPR compliant contract for customers (Data Controller) using Kimble as their Data Processor.