Security

Security at Ballpark

We're committed to protecting the data that our customers trust us to store.

Ballpark’s mission is to democratise research, making it more productive and inclusive so that everyone has the opportunity to bring their ideas to life. Core to that mission is keeping your ideas, data and projects confidential and secure.

Ballpark’s mission is to democratise research, making it more productive and inclusive so that everyone has the opportunity to bring their ideas to life. Core to that mission is keeping your ideas, data and projects confidential and secure.

Here you’ll find more information on how we approach security, if you have additional questions feel free to get in touch at on security@ballparkhq.com

Here you’ll find more information on how we approach security, if you have additional questions feel free to get in touch at on security@ballparkhq.com

Security features

Hosted in the EU

Hosted in the EU

Hosted in the EU

Hosted in the EU

GDPR Compliant

GDPR Compliant

GDPR Compliant

GDPR Compliant

SAML-based SSO

SAML-based SSO

SAML-based SSO

SAML-based SSO

SOC2 Type II

SOC2 Type II

SOC2 Type II

SOC2 Type II

Multi-layer encryption

Multi-layer encryption

Multi-layer encryption

Multi-layer encryption

Full range of user permissions

Full range of user permissions

Full range of user permissions

Full range of user permissions

Credit Cards

Ballpark does not store any credit card information. We have partnered with Stripe for credit card processing which allows us to leverage AES-256 encryption at rest, with PCI Service Provider Level 1 standards in the storage and handling of credit card information. This is the most stringent level of certification available to the payments industry.

Enterprise Security Features

Ballpark Enterprise has several additional features that allow customers to enforce several layers of security to their accounts and projects. That includes Single Sign-On (SSO), IP restriction, access logs, user permissions and project-level password protection.

Communication

All user data is transported securely, as all traffic is encrypted in transit via SSL. Encrypting data in transit protects it from unauthorised snooping, modification, and man-in-the-middle attacks. We use 256-bit SSL/TLS.1.2 encryption, utilising both the ECDSA and RSA algorithms.

Data Centre Security

Our hosting environment is fully-redundant with disaster recovery procedures. Our cloud hosting providers maintain multiple certifications for its data centers, including ISO 27001 compliance, PCI certification, and SOC. For more information about their certification and compliance, please visit the Google Cloud Platform or Amazon AWS security site.

SOC2

Type II

Our SOC2-compliant solution means data security and privacy are not just promises, but practices.

EU

Hosted

Our infrastructure is hosted in the European Union allowing us to meet regulatory and compliance requirements of organisations in Europe.

GDPR

Compliant

Ballpark is fully commited to meeting our legal obligation with the latest GDPR regulation and protecting the data rights of our customers.

TRUSTED BY ENTERPRISES IN EVERY INDUSTRY