How we handle your CRM data

The following information from your CRM is always stored in vizrm systems:

  • Organization CRM IDs (unique identifiers for data points in your CRM system)

  • Person CRM ID

Further additional information from your CRM may be stored in system logs for error investigation. This data is not used by vizrm unless a customer contacts us for system support, in which case our policy requires customer approval and vizrm management approval to analyze the logs.

vizrm security overview graphic

How we protect your data

With the exception of the above mentioned, vizrm only retrieves data from your CRM and visualizes it in your browser. There are multiple measurements in place to make this process secure:

  1. Authentication with your CRM is done with OAuth 2.0 and under the same permissions / user access rights implemented in your CRM

  2. Encryption of your data in transit is achieved using HTTPS (TLS/SSL)

  3. Authentication toward the vizrm database is enforced with Secure Session Management using signed cookies to access sessions saved on Azure Storage

  4. Data at rest is secured: using mongodb to access database, parameterized queries and contextual escaping.

  5. The vizrm database and servers are hosted on Microsoft Azure (more information on Microsoft security: https://servicetrust.microsoft.com/viewpage/ISOIEC)

How we monitor and improve data security 

vizrm employs rate limiters and protection provided by Azure to monitor and limit data transfers. Further we use the API request limits provided by your CRM.