Trust Center
Sub-Processors
Trust Center
Sub-Processors
Information about integrity, data processing and sub processorsGeneral
Security and data integrity are of outmost importance to us at Brilliant Future. This section describes how we store data and the sub processors we use.
Our tools are aimed at HR, management teams, team managers, and employees in various types of organizations. We act as a data processor for our customers, and naturally comply with all laws and restrictions related to GDPR, data security, and privacy.
Cookies in the platform are only used to achieve necessary functionality and are not used for tracking and marketing purposes.
Surveys
Our surveys are aimed at respondents (employees or our customers' customer). All responses in employee surveys are anonymous, and cookies are not used to store information from the survey.
Customer surveys are not anonymous because our customers need ability to feedback their customers (close the loop). Similarly, cookies are not used to store information from the survey, and customers can always choose not to participate and actively decline further information and survey mailings (opt-out).
If you need more detailed information about the platform, how we manage privacy and data security, please contact us at dpo@brilliantfuture.se.
Trust Center
Description of data storage and sub processors
Our platforms store all data in datacenters within Sweden and EU. We use standard components for securing data in transit and data at rest. Data in transit uses standard SSL/TLS/HTTPs and data at rest use SQL server and the database is encrypted using TDE encryption. Columns containing personal data in the database are using AES encryption. Encryption keys are stored separately. To further strengthen data integrity, we use both anonymization and pseudonymization.
List of sub-processors
NOTE! This is a list of all our sub-processors. Depending on your current subscription and the products you use, some of these sub-processors might not be used.
|
Name(s) |
Product(s) | Location of processing (country) |
| ChatGPT and Azure OpenAI by Microsoft | All* |
Sweden/EU Covered by and certified under the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/s/, n.d.). |
|
Twilio/Sendgrid |
All** Sweden/EU |
Sweden/EU Covered by and certified under the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/s/, n.d.). |
| Pendo | All |
EU Covered by and certified under the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/s/, u.d.) |
| Hubspot | All EU |
EU Covered by and certified under the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/s/, u.d.) |
|
Start Deliver |
All |
Sweden/EU |
| Microsoft |
Insight EX, CX |
Sweden/EU Covered by and certified under the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/s/, n.d.). |
|
Nordicstation AB |
Navigator/Customer Service |
Sweden/Stockholm |
*Only for subscriptions including AI Insights, AI Monthly report or AI Text analysis
**Only for subscriptions using e-mail or SMS. All SMS traffic in Navigator use local SMS-solution