Customer data that is used by systems hosted by Meridix cloud solution where their data is uploaded to Meridix controlled servers is handled as described below
- Data from a customer will under no circumstances be shared, sold or used by/to other companies than Meridix without the customers written approval.
- Data is stored in a secure way that makes it inaccessible for unauthorized personnel within Meridix as well as for partners to Meridix.
- Data is always owned by the customer even though it is stored on Meridix controlled servers. Meridix will always accept a customers requests regarding their stored data.
- A customer can always demand Meridix to provide access to the data for a customer in the same format as when uploaded. (ex Csv, Xml).
- Meridix will delete historic data both from the main backend and from backup locations if a customer requests it.
- Meridix will treat the information as sensitive business information and handle it as such.
- Transfer of data between servers (through WAN connections) will always be done with transport layer security (TLS) techniques approved by customers specific requirements if any.
- Any user information e.g. emails, names will never be displays on any public web pages (for non authenticated users within a system).
- Any credentials (passwords) will be stored as a one way encrypted (hashed and salted) representation and can never be reverted to a plain text representation by user or administrators (Meridix included)
- Meridix will always manage data in a safe and ethical manner in every possible aspect.