A commitment to security is at the core of 3CLogic

The security of your organization and your data is a top priority for 3CLogic.

Security & reliability

We are committed to delivering solutions to our customers that are scalable and secure.

Security & reliability

We are committed to delivering solutions to our customers that are scalable and secure.

Enterprise-grade data security

3CLogic adheres to the following privacy, security, and accessibility regulations and protocols to ensure the protection of your data.

SOC 2 Type 2 Attestation

SOC 2 Type 2 Attestation

The SOC 2 Type 2 attestation provides 3CLogic customers with one of the most established symbols of assurance available in the industry. The SOC 2 Type 2 audit for 3CLogic was executed in accordance with the American Institute of Certified Public Accountants (AICPA) and AICPA Trust Services Principles and Criteria for Security. 

3CLogic’s Cloud Contact Center meets and/or exceeds AICPA Security Principle in relation to security and provides an independent and objective opinion that 3CLogic has developed, implemented, operates, and maintains security controls assured to its customers with respect to data handled, as well as other security and compliance obligations.

ISO 27001:2013 Certification

ISO 27001:2013 Certification

3CLogic is ISO 27001:2013 certified. ISO 27001 is an international standard which is recognized globally for managing risks to the security of information that a company will hold. ISO/IEC 27001:2013 (the current version of ISO 27001) specifies the requirements for establishing, implementing, maintaining, and continually improving the Information Security Management System (ISMS) within 3CLogic. Certification to ISO 27001 is to ensure our clients and other stakeholders that we are managing the security of their information with the highest priority.
General Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR)

3CLogic empowers its customers with features that enable General Data Protection Regulation (GDPR) compliance. These include options for our customers to comply with the GDPR regulation. High-level areas include information security, breach management, content management, data visibility, individual data rights management, and records management.

3CLogic also requests its customers, otherwise known as the data controllers, notify 3CLogic of their EU processing activities so we can maintain an accurate report of processing activity as required by the GDPR.

Health Insurance Portability & Accountability Act (HIPAA)

Health Insurance Portability & Accountability Act (HIPAA)

3CLogic has in place the requisite technology, policies, and processes for protected health information in transit and at rest in compliance with the Health Insurance Portability and Accountability Act (HIPAA). Some of these include:

  • Multi-factor authentication for elevated privilege accounts
  • Role-based, minimal privilege access controls with periodic security and privacy awareness and education
  • Advanced endpoint protection with cloud-focused Intrusion detection and prevention systems
  • Encryption of data in transit between customers and the 3CLogic Cloud Contact Center
  • Encryption of data at rest for call recordings (where applicable)
  • Detailed, step-based change management processes with security inclusive code development lifecycle
  • Regular internal and external vulnerability scanning as well as network penetration testing
  • Security incident management processes with breach notification
  • Cloud-based backup for business continuity
  • Independent, accredited third-party attestation reports (SOC2 Type2)
HECVAT

HECVAT

The HECVAT is a questionnaire framework specifically designed for higher education to measure vendor risk. 3CLogic uses the HECVAT tool to confirm that information, data, and cybersecurity policies are in place to protect your sensitive institutional information and constituents' PII.
 Voluntary Product Accessibility Template (VPAT) Section 508

Voluntary Product Accessibility Template (VPAT) Section 508

3CLogic regularly works on accessibility testing, ensuring that our product is accessible to all individuals including those working with assistive technology such as speech recognition software and screen readers. We empower agents to more effectively serve each customer with an easy-to-use, yet comprehensive agent-facing softphone solution, offering robust call center functionality while working from within leading platforms.

To help meet our goal, 3CLogic follows the internationally recognized best practices in Section 508 of the Rehabilitation Act and the Web Content Accessibility Guidelines (WCAG) 2.0 Level AA to the best extent possible. We are constantly working on our product to meet newer and higher standards.
 Security and User Awareness Training

Security and User Awareness Training

3CLogic is committed to ensuring that its employees are familiar with security and privacy best practices and strives to provide regular training, beyond what is required by compliance certifications. All forms of training are built from the ground up to reinforce a culture of compliance and data protection accountability throughout our company. Training is additionally built at a team level, catered, and suited to ensure applicability for the role in question.
Service Continuity and Geographic Redundancy

Service Continuity and Geographic Redundancy

With our cloud-based contact center solution, 3CLogic’s customers automatically benefit from our resilient architecture, with data redundancy built into the product from day one. 3CLogic ensures business continuity to its customers during natural calamities or other unforeseen events that could disrupt operations significantly. Customers are backed by geographic redundancy, which ensures that their operations transition between our different cloud instances and is accessible within minutes after a disruption.