Protecting your account and data, and earning your trust is vital to our Security team.
We enforce TLS 1.2 everywhere. We use AES-256 to encrypt data at rest and secure all sensitive information with strong hashing algorithms.
GDPR is a priority to us. We have specific processes and tools in place to ensure compliance and protect your data and privacy. View our GDPR guide.
Penetration & Security Audits
Our systems are penetration tested and audited annually by an independent security firm.
Network, application, and data security is vital for any enterprise solution
Our systems and processes are independently audited and tested annually. For network security, we use TLS 1.2 and AWS data centers certified with ISO 27001 and SOC2 compliance. For our code, infrastructure, and tracking outside threats, we use Amazon monitoring services.
Data encryption in transit and at rest
Annual penetration tests
Encrypted full backup every 24 hours
Principle of least privilege policy
ISO/IEC 27001 certified
The Centre for Assessment confirm that our Information Security Management System has been audited and the requirements met for ISO/IEC 27001.
Frequently asked questions
Do you support DKIM?
We do. For deliverability and brand customization, you can send emails from YouCanBook.me using your own DKIM (DomainKeys Identified Mail) signatures.
What are your latest Penetration Test results?
Our latest results were an A+ rating, and we are penetration tested annually. We can share result details with qualified prospects and customers under a Non-disclosure agreement (NDA).
Are you HIPAA compliant?
Using our product does not in itself meet HIPAA (Health Insurance Portability and Accountability Act) compliance standards. The duty to comply still rests with the account holder and is dependent on what data is collected and how it is shared with 3rd party calendar systems. However it is possible to use our system without breaching any of those requirements.
How is my account secured?
Login is secure using secure authentication, or with single sign-on (SSO) via Google, Microsoft, or Facebook. Application programming interface (API) security is through HTTPS.
Do you have a security statement?
Yes, and we can release our security statement with an NDA. We can provide it to help prospects and customers complete their own security reviews.
Do you support other special security and data agreements?
Contact us for information on other special questionnaires or agreements you need. We may be able to help you to get the information needed to complete your own reviews.
How is my data secured?
We protect all customer data at the database level using Amazon Web Services (AWS) encryption at rest mechanisms. At the account level, customers can set their own data retention limits.
Where are you located?
We are a UK company, with employees in Spain and the US. Our data centers are in the United States using AWS. Find out about our team
What is your stability and uptime?
We aim for 99.9% uptime. We use active monitoring, like Amazon GuardDuty, to monitor external threats. For internal anomalies, we use CloudWatch alarms. We report our status on our status page.
Getting started is fast and easy
Get started with a FREE 14 day trial of our paid plan to test out all the features.