Security And Privacy

Security and privacy are a priority for MANIFESTA and also our partner – Control Shift. It’s a process that is continually being improved on and a committment that runs through everything – from how member data is stored to the tools provided to customers.

Principles

Designed for Security

MANIFESTA and Control Shift use industry best practices for encryption, physical security, multi-factor authentication and segmentation of data. Security is a core part of the software design process of our partner Control Shift, and one of the criteria we use during code review.

Automated

Everything is automated. When security configuration is automated then its correctness and repeatability can be guaranteed. When infrastructure is automated, fewer people need access to sensitive data.

Available

All infrastructure is built to be highly available and resilient. The architecture is designed to eliminate single points of failure with ample excess capacity so your campaigns keep running no matter what.

Transparent

Customers are promptly notified of outages and security events.

Details

Physical Security

ChangeSprout, Inc., who provide technical services to Control Shift/MANIFESTA stores customer data using Amazon Web Services, in their US-East region in northern Virginia, USA. This facility limits and audits physical access, and provides fire suppression, climate control and uninterruptible power supplies.

Backups

Databases are always replicated in a N+1 configuration to provide immediate failover in case of instance hardware failure. A full snapshot of all data is taken nightly, encrypted and shipped to Amazon Glacier and retained for 6 months. A complete offline and offsite backup is stored on an encrypted external disk rotated monthly into a bank safe deposit box.

Encryption

MANIFESTA uses TLS/SSL encryption to protect data in transit across the internet, ensuring that our users have a secure connection from their browsers to our service. Remote access for systems administration is provided over encrypted VPN and encrypted SSH connections. Where possible data is encrypted at rest, and backups are always encrypted before they are stored.

Access & Authorization

ChangeSprout staff use multi-factor authentication, in addition to passwords, in order to access administrative interfaces of the MANIFESTA and ControlShift platforms. Multi-factor authentication is also available to organization staff, though it is dependent upon the organization to ensure its use. Access to systems is limited to ChangeSprout staff who require access.

Member Data

While member data is collected using the platform, ChangeSprout Inc. does not own the data, nor is it processed except as directed by the Customer or as required for the operation of the platform. We treat member data as confidential information and take precautions to prevent the unauthorized disclosure, misuse, or loss of data. In addition to the other measures outlined above, we allow users to access and update their personal information to ensure its accuracy.

Onward Transfer

MANIFESTA and Control Shift only transfer member data to third parties when requested by the Customer or when required for the reliable operation of the platform. We limit the number of third parties we use to process member data and ensure that all third parties adhere to adequate data protection policies. The third parties we currently send platform data to are: Amazon Web Services, Mailgun, Akismet, and Sendgrid. At the customer’s explicit request we may also send information to the customer’s chosen CRM and / or Segment, a service that provides data analytics. CRM and Segment integrations are optional and it is the responsibility of the customer to ensure that these services adhere to their country’s data protection regulations.

Unsubscribes

Emails sent from the MANIFESTA platform automatically include links to unsubscribe from communications. By default, this allows users to unsubscribe from communications about a specific campaign. However, for certain CRMs, the MANIFESTA platform also supports global unsubscribes – allowing the user to unsubscribe from all of the organization’s communications at once. Admin tools also allow Customer Staff to unsubscribe users manually.