At Verifalia, data is our business and keeping that data secure is our #1 priority. Our customers’ data is their most valuable asset in many cases and it is our responsibility to protect it for them.
Verifalia is committed to the sustained improvement of security standards. In order to accomplish this, we employ an array of advanced techniques, select our partners carefully and continually monitor and update our processes to ensure the highest level of protection for our clients. Read about some of these measures here below.
Where is my data stored?
Many of our customers want to know where their data is stored either to comply with local data security laws or for their own peace of mind.
All Verifalia client data is stored in Germany (European Union) in secure Hetzner datacenter parks in the cities of Nuremberg and Falkenstein, with additional services and emergency backups in the Amazon AWS Frankfurt datacenter. With data storage in different locations, we are able to maintain the availability of the service in the event of a major disaster.
These facilities are committed to maintaining the highest security standards. All locations are protected by high-security, video-monitored perimeters and multi-level electronic access controls. All employees are contractually obliged to comply with Paragraph 5 of the German Federal Data Protection Act (BDSG).
Will my data leave the European Union?
Our servers are located in the European Union and at no point will your data be stored outside of EU territory.
Due to the nature of the email validation process, we may need to use your data to contact mail exchangers outside of the EU in order to validate emails - in order to validate Gmail addresses, for instance, it is necessary to contact Google’s servers located in the United States. But your data remains stored securely on our servers in Germany throughout the process.
How do you keep my data secure?
Our specific internal standards for data handling are detailed in our Terms of Service.
Additionally, all of our servers are located within datacenters certified in accordance with DIN ISO/IEC 27001 standards, where we employ the most modern network and data security measures, including:
- Advanced DDoS protection system
- Encryption at rest - data is automatically encrypted under the 256-bit Advanced Encryption Standard (AES) prior to being written to disk
- All services are managed through a secure infrastructure, which is only accessible over encrypted SSL/TLS channels
- Compliance with relevant sections of German Federal Data Protection Act (BDSG)
The datacenters which house our servers all feature thorough physical security measures, including:
- Video-monitored high-security perimeter fencing around the entire data center park
- Entry via electronic access control terminals with a transponder key or admission card.
- Ultra-modern surveillance cameras for 24/7 monitoring of access routes, entrances, security door interlocking systems and server rooms.
Is Verifalia compliant to the EU's GDPR?
Yes: Verifalia’s email verification service is fully compliant to the European Union's General Data Protection Regulation (GDPR), applicable from May 25th 2018 in order to harmonize data privacy laws across the European Union.
Verifalia users become Data Controllers whenever they submit data to Verifalia or as soon as they register for a Verifalia account; in regard to this, Cobisi Research - the company which owns and manages the Verifalia services - is the Data Processor which processes data on the behalf of the aforementioned Data Controller.
All Data Controllers are required to acquire personal data lawfully, fairly and in a transparent manner and they take full responsibility for the data they submit to Verifalia. Our Data Protection Officer is Verifalia's founding member and CTO Efran Cobisi: we take full responsibility for the implementation of the data protection and security policies mentioned in our Terms of Service.
Verifalia keeps tracks of all processing activities and ensures the security of its data processing: according to the GDPR, we will notify any personal data breaches to each Data Controller within 72 hours of becoming aware of the breach, where feasible.
Is my email database safe?
Of course! Our service satisfies both the US Privacy Shield policies as well as the EU's GDPR data protection requirements when transferring or managing personal data, including the email addresses you submit for validation through our email verification service. Your databases privacy is absolutely safe with Verifalia.
These are just a brief overview of our data security measures. If you have any further questions or need more details, please just send us a message with your specific questions.