- The Company
- Compliance and Security
Compliance and Security
Kimble and Salesforce : Ready for the completion of Brexit Transition
Kimble and Salesforce have already taken the necessary actions, to ensure the continuity of their services from 1st January 2021 once the UK has left the European Union (EU).
Click here for more information about Kimble & Salesforce’s readiness for Brexit
Independent Audit – Service Organisation Controls (SOC)
Kimble meets or exceeds the standards of SSAE 18 (SOC1 Type II) and has passed an independent external audit every year since 2015, with no exceptions noted. Our internal control framework is regularly assessed for both the ‘adequacy of design’ and for ‘operational effectiveness’ in order to ensure the highest possible level of compliance.
Click here for more on Kimble passing SOC1
Information Security / Data Protection
Kimble is committed to protecting the privacy of your data and users. Kimble was one of the first Salesforce Independent Software Vendors to launch a General Data Protection Regulation compliance program in early 2017, which successfully completed prior to the May 2108 deadline. Kimble acts as a Data Processor, under the General Data Protection Regulation (EU 2016/679) (“GDPR”).
Click here for Kimble’s Privacy Policy
Click here for Kimble’s approach to GDPR
The key Information Security benefits for adopting Kimble include:
‘Privacy By Design’ Principle
By not storing any financial or sensitive information, and keeping other personal data to an absolute minimum.
Salesforce Platform
Kimble leverages the Salesforce platform strengths as one of the world’s largest and most secure cloud platform providers.
Kimble Product Features
Including the ability to anonymize resource data and easily support ‘Subject Access Requests’.
Data Processing Addendum (DPA)
We provided a comprehensive GDPR compliant contract for customers (Data Controller) using Kimble as their Data Processor.