OfficeSpace’s commitment to you
At OfficeSpace, performance, security, and data privacy are first-order considerations for how we design our products and policies as an organization.
Learn how we couple these principles with best-in-class technology to ensure the integrity of your data and deliver an exceptional user experience for your team.
Data security and privacy
OfficeSpace observes key industry best practices and regulatory schemes to protect the security and privacy of our client’s data.
Frequently Asked Questions
Where does OfficeSpace store data?
Data submitted to OfficeSpace and OfficeSpace applications are processed and stored in a secure, multi-tenant environment provided by Google’s Cloud Platform. All data storage is encrypted by default.
Clients can choose between having their data hosted in any of Google’s data center facilities around the world, including the United States and the European Union.
Is data protected?
Yes, all data hosted by OfficeSpace is encrypted at rest and in transit.
Data at rest
All data is encrypted at rest using AES 256.
Every client’s full system is completely segregated from other clients. Each instance is protected by multiple layers of security including layered firewalls, intrusion prevention, and intrusion detection systems.
Access to data is secured with two-factor authentication (2FA), and employees are only given access to the environments they work with. This access is timeboxed and auditable.
All systems are actively monitored.
Data in transit
Our API and application endpoints are TLS 1.2 only.
How long does OfficeSpace store client data?
OfficeSpace retains all client data as long as you are an active client. All data will be removed from OfficeSpace after a subscription is canceled.
Does OfficeSpace support Single Sign-On (SSO) or two-factor authentication (2FA)?
Yes, OfficeSpace supports Single Sign-On and 2FA. Administrators can disable password-based logins and require authentication through your company’s identity provider.
All major identity providers (IdPs) have built-in connectors for OfficeSpace including Okta, AzureAD, Google, Ping Identity, and One Login.
Is OfficeSpace GDPR Compliant?
Yes, OfficeSpace is fully GDPR compliant.
Does OfficeSpace conduct security audits?
OfficeSpace undergoes third-party penetration testing on an annual basis.