Security

Diligent Boardbooks is used by more security conscious companies in the world than any other board portal. Many represent those industries with the highest security thresholds such as financial services, defense and healthcare.

Ever vigilant when it comes to security, we combine a keen understanding of how the board process works with deep expertise in the constantly evolving technologies underlying the board portal. Due to the sensitive nature of board materials, constantly guarding against threats from both outside and inside the company is crucial.

Security is a never-ending effort for Diligent. We are uniquely positioned to receive ongoing, valuable feedback and insights. Thanks to close relationships with our customers, we get unparalleled feedback and security-intelligence from technology leaders at thousands of world-class companies who chose Boardbooks because of our outstanding security. Extensive third-party audits are also conducted on a continual basis.

External threats

External threats to security include hackers, phishing, competitive spying and natural disasters. To counter these threats, Diligent employs techniques including high-grade data encryption, multi-factor authentication, certificates, multi-layer perimeter defense, and highly secure and geographically diverse hosting facilities featuring complete redundancy, hot-site failover and daily backup.

Internal threats

In the age of electronic communications, minor human actions – whether intentional or inadvertent – can have major consequences. One of the best ways to address this is to enforce access control to board content. You can give only certain individuals and groups the rights to view it, or place rules around content distribution as a whole. General Counsels can put document retention policies in place electronically. Our Boardbooks system is designed to ensure that confidential material goes no farther than it should.

Post-iPad threats

When a board member walks out the door with their iPad, internal and external threats combine in a mobile world. In case an iPad is lost or stolen, Diligent has added a sophisticated level of data encryption to protect critical board information stored in Boardbooks on the iPad. Access to the information can be set to expire at a certain time. More protections have been put in place in other areas of iPad security as well, such as preventing iTunes and iCloud backups, and timing out the app during multi-tasking or in sleep mode.

Diligent’s priority

At Diligent, security happens at all levels starting with the product itself. Diligent Boardbooks converts and encrypts at the page level. In other words, we start protection below the file level, whereas others often start protection at the file, or even the filing cabinet level. Every organization should make sure it examines how and where encryption is applied by its board portal.

With a robust security infrastructure around the Boardbooks product and hosting facilities, security is also a major focus in all parts of Diligent’s company operations. Keeping our clients’ sensitive board information secure and confidential is our top priority. To do so we have taken these steps:

• Continuous vulnerability scanning
• Ongoing testing and validation by third-party security experts
• SAS 70 and SSAE 16/ ISAE 3402 Type 2 (SOC 1) audited for seven consecutive years
• Third-generation proprietary software built from the ground up
• Substantial investment in the latest technologies to enhance security
• Robust security incident response plans and protocols