ActivTrak:
ActivTrak
About

We’re Serious About Data Privacy & Security

Activtrak provides privacy-first, data-driven insights with uncompromising security to measure and assess productivity and wellness with the employee in mind.

Why customers trust ActivTrak

We recommend being transparent with employees about the intent, use, benefit, expectation and application of ActivTrak to develop mutual trust, improve productivity, create healthier work habits and deepen engagement.

Forge higher levels of trust with employees

ActivTrak keeps your privacy and confidentiality safe without loss of any productivity insights. Determine the right configuration for your organization using our data privacy controls. 

  • Data privacy by default protects employee privacy and personal data. 
  • Privacy-first analytics excludes non-business activity details and sensitive data from reporting. 
  • Privacy compliance support helps to ensure businesses are compliant with regulations like GDPR, CCPA and HIPAA. 
  • Role access configuration protects confidentiality with customizable user permissions and settings. 
  • Private personal insights enables employees to access their own personal work insights. 
  • Email subscriptions provide visibility into reports and dashboards with a select audience while limiting data access.

Keep data safe and protected 

We regularly — and rigorously — test our infrastructure and applications to isolate and remediate vulnerabilities and work with industry security teams and third-party specialists. 

  • Data security risk protection is backed up by SOC 2 Type 1 & 2 certifications. 
  • Multiple layers of protection across a distributed infrastructure. 
  • Audit logs enable detailed investigation & scrutiny of recorded activity. 
  • Security alarms & domain blocking flag and prevent compliance violations. 
  • Data recovery & retention policies provide complete control to all active account data.

Secured by Google Cloud Platform (GCP)

Data Collection: 

All account information encrypted in transit and stored in a secure data center hosted by Google Cloud Platform (GCP).

  • Encrypted connection protocols include HTTPS and SSL/TLS. 
  • Communication between ActivTrak and the agent uses HTTPS/TLS with AES-128 encryption. 
  • Mutual authentication is provided by a digital certificate and per-instance shared key – created during deployment.

Data Storage:

Data is encrypted at rest, using several layers of encryption to protect customer data in GCP.

  • Data stored in the cloud is stored using AES-256 encryption. 
  • Data is automatically encrypted prior to being written to disk. 
  • All data is split into discrete blocks which are encrypted.

Identify Authentication:

ActivTrak complies with your authentication security standards and protocols.

  • Single sign-on (SSO) and multi-factor authentication (MFA) support. 
  • When SSO or MFA is enabled, the user authentication process is delegated to identity providers that support the Security Assertion Markup Language (SAML) 2.0 standard. 
  • Certified SSO for Okta, Azure AD, OneLogin and Google Workspace.
Profile Quick Links
Audits and Certifications (1)
Audits and Certifications  (1)
badge
SOC 2
1 Document