Hundreds of companies trust Bloomfire to help them centralize and find their mission-critical knowledge, which is why we take security so seriously.
Today, we have over 300 customers across dozens of industries around the world, but our foundation is still the same. We’re continuing to innovate on our platform so that you can harness your company’s knowledge and make it available to all who need it.
Read our customer storiesBloomfire’s database is replicated across multiple AZs in real time, allowing us to continue operation with the loss of any single AZ. We also take snapshots of our data and store them apart from our servers throughout the day.
Set up single sign-on so users can navigate between systems without having to manage multiple passwords.
Control what information each user can access and contribute. Different role and permission settings let your system admins easily manage their teams in one centralized place.
Bloomfire is hosted by Amazon Web Services, which ensures locked-down, privately-known locations and uses multiple security layers to prevent unauthorized access to hardware and infrastructure.
We take every step necessary to protect your data.
We follow strict information security policies to remain SOC 2 compliant and keep your data secure in our cloud-based platform.
We recognize the importance of securely storing patient information, and we work with our healthcare customers to ensure their sensitive data is safe in our platform.
Whether you're based in Europe or have customers in EU countries, you can rest easy knowing that Bloomfire takes the necessary steps to remain GDPR-compliant.
Yes, Bloomfire encrypts data at rest as well as user data in transit to ensure that login data is protected.
Yes.
Bloomfire hosting is extremely secure. Our servers are hosted at SSAE 16 compliant facilities. Our hosting environment encrypts customer data using AES-256 at rest to keep your data safe. And all connections to Bloomfire are secured via SSL/TLS. We provide security support, vulnerability testing, reporting, and more to ensure uptime and data integrity.
Yes.
Bloomfire scans for vulnerabilities and intrusions regularly, in addition to running penetration tests. All customers receive full backup and recovery services so your data stays safe, even in the event of an emergency.
Yes, Bloomfire supports SSO so that users can navigate between systems without having to manage multiple passwords. This allows you to leverage your existing layers of security to further protect your information.
Bloomfire users can be individually identified and provided access through assigned privileges based on community and group settings and other variables. Authentication is managed based on user credentials. All user activity is tracked by the application for review.
Bloomfire’s database is replicated across multiple AZs in real time, allowing us to continue operation with the loss of any single AZ. We also take snapshots of our data and store them apart from our servers throughout the day.
Bloomfire can be configured to grant users view-only, edit, administration, or community level owner access. In addition, Bloomfire structure allows you to set specific content to “private” so you have complete control over who can see and edit your content.
Bloomfire is SOC2 type 2 compliant, meaning that every employee follows strict procedures internally and that we review these procedures annually to ensure compliance. SOC2 governs policies and procedures across the organization — from development processes, server, and other maintenance to internal and external communications.
Yes, Bloomfire is HIPAA-ready. We adhere to HIPAA standards across the organization — from the policies we follow to the hosting of your data. We sign Business Associates Agreement (BAA) with customers that request it to ensure the protection of their patients’ health information.
The General Data Protection Regulation (GDPR) is a new policy that extends individuals’ rights as they pertain to the way organizations market, track, and handle their personal data. The concept of controlling personal data is not new. In fact, GDPR is replacing the 1995 Data Protection Directive (DPD). Bloomfire adheres to the GDPR regulations, and our privacy policy has been updated to comply with GDPR.