Security at GoodUp

SSO

Single Sign-on SSO allows you to authenticate users in your own systems without requiring them to enter additional login credentials. All our plans include SSO via SAML 2.0 at no extra cost.

SCIM

The System for Cross-domain Identity Management (SCIM) enables synchronisation of user information between multiple applications. SCIM give you total control of the creation, management and maintenance of an end-user’s objects.

Data Permissions & Authentication

Access to customer data is limited to authorized employees who require it for their job and data access is logged.

Penetration Tests

GoodUp perform bi-annual network and application layer penetration tests. We also allow our customers to execute their own pen test. We commit to fixing all issues found.

Secure Software Development

GoodUp utilises a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.

Security Team

GoodUp’s development team is responsible for reviewing, updating, testing and maintaining our security and privacy.

Where is my data being stored?

Customer data is stored in Germany with encrypted backups in Amsterdam.

What else do you do to keep customer data secure?

GoodUp employs a variety of technical and organisational controls to keep customer data secure.

How often is data backed up?

All data is persisted in a database that has transaction logging enabled and is fully backed up daily.

Does GoodUp require any plugins and what browser is required?

GoodUp works with all modern browsers without the use of any plugins.

What is your historical uptime?

We publish system uptime and historical uptime here: https://goodup.statuspage.io/