Bottle Rocket Trust Center

trust

center

Bottle Rocket ensures that security is embedded into all that we do. Our culture prioritizes safeguarding your data. Learn how we’re continuously enhancing data security for everyone.
OUR COMMITMENT
“bottle rocket will protect the confidentiality, integrity, and availability of its it systems, services, applications, and data – whether on premises or in the cloud by collaborating with the business to manage it security risks, threats, vulnerabilities, incidents and limit the negative impact to the company, in support of the business needs.”
AICPA SOC 2 COMPLIANT
GDPR COMPLIANT
CCPA COMPLIANT
SECURITY HIGHLIGHTS
security culture
technology
operational security
data access & restrictions
SECURITY UPDATES

We are excited and proud to announce Bottle Rocket has achieved SOC 2 Type 1 Certification.

We offer a full suite of digital services to help grow your business at every stage.

A SOC 2 Type 1 audit was conducted to assess and report on the design and implementation of controls within our systems and processes. The purpose of this audit was to evaluate the trustworthiness and security of service providers that handle sensitive data for our clients.
SOC 2 stands for Service Organization Control 2, which is a set of criteria established by the American Institute of Certified Public Accountants (AICPA) to ensure the security, availability, processing integrity, confidentiality, and privacy of data.
SOC TRUST SERVICES CRITERIA
  • Security
  • Availability
  • Processing Integrity
  • Confidentiality
SECURITY INSIGHTS

our philosophy on
data usage.

Bottle Rocket clients own their data, not Bottle Rocket. The data that clients put into our systems is theirs, and we do not scan it for advertisements, nor do we sell it to third parties. Bottle Rocket will not process data for any purpose other than to fulfill our contractual obligations. Furthermore, if customers delete their data, we commit to deleting it from our systems within 180 days.

security documentation
information security policy
information security white paper
asset management standard
ASSET MANAGEMENT POLICY
DATA CLASSIFICATION STANDARD
incident response plan
identity & access management standard
risk management standard
risk management policy
software design life cycle
vendor risk management plan
change control standard
physical access control standard
security awareness training policy