Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            What is the regulatory compliance standard that Boardfolio follows?

            Modified on Tue, 20 May at 4:44 PM

            At Boardfolio, we are committed to maintaining the highest standards of data protection and privacy. Our platform adheres to key regulatory and industry standards to ensure your data is secure and handled responsibly. Below is an overview of the regulatory compliance frameworks and best practices we follow, as part of our Trust Center commitment to transparency and security.

            Key Compliance Standards

            1. ISO/IEC 27001:2013 Certification
              Boardfolio is hosted in EU-based data centers certified under ISO/IEC 27001:2013, the globally recognized standard for Information Security Management Systems (ISMS). This certification ensures that we implement robust controls to protect data confidentiality, integrity, and availability, providing a secure environment for your sensitive information.

            2. GDPR Compliance
              Operating within the European Union, Boardfolio fully aligns with the General Data Protection Regulation (GDPR). This regulation governs the processing of personal data, ensuring that user privacy rights—such as access, rectification, erasure, and data portability—are upheld. Our practices, as outlined in the Vistra Group Privacy Notice (www.vistra.com/en/privacy-notice) and Boardfolio Data Processing Addendum (DPA) (Boardfolio DPA), reflect our commitment to GDPR compliance.

            3. Industry Best Practices
              Boardfolio incorporates proprietary multi-layered advanced encryption and secure access controls to protect sensitive corporate information. Data transiting to and from our servers is encrypted using secure SSL/TLS-protected channels, while data at rest is secured with Transparent Data Encryption (TDE). These measures align with industry standards for safeguarding critical data, ensuring robust protection against unauthorized access.

            Our Commitment to Compliance

            Our adherence to ISO/IEC 27001:2013, GDPR, and industry best practices reflects our dedication to maintaining a secure and compliant platform. We regularly review and update our processes to meet evolving regulatory requirements and ensure the highest level of trust for our users.


            For more details on our compliance practices or to exercise your data protection rights, please review the Vistra Group Privacy Notice or the Boardfolio DPA. If you have any questions or need further assistance, please raise a ticket through our support portal and our support team will respond promptly.

            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0