Security at Lattice

Lattice utilizes enterprise-grade best practices to protect our customers.

Our Security Commitment

At Lattice, customer trust is our #1 priority.

We maintain the highest standards of data privacy and security because we know your employee data is important to keep secure. Lattice undergoes regular penetration testing and security reviews, designed to be GDPR compliant, and encrypts data at rest and in transit.

Our customers entrust sensitive data to our care. Keeping it secure is our promise.

Secure and Reliable Infrastructure

Lattice uses Amazon Web Services (AWS) for the hosting of staging and production environments. AWS data centers are monitored by 24×7 security, biometric scanning, video surveillance and are SOC 1, SOC 2, and SOC 3 certified.

World Class Application Security

Data Encryption

Data is encrypted in-transit using bank-grade TLS 1.2, the safest method available today. Data is encrypted at-rest using 256-bit encryption via native AWS capabilities.

SSO

Single Sign-on (SSO) allows you to authenticate users in your own systems without requiring them to enter additional login credentials.

Data Permissions & Authentication

Access to customer data is limited to authorized employees who require it for their job and data access is logged.

Incident Response

Breaches will be communicated within 48 hours, and vulnerabilities are fixed ASAP.

Wave

Enterprise Ready Compliance

EU GDPR Compliant

Lattice is GDPR compliant. Organizations in the EU or who employ EU-based individuals can rest assured that Lattice is handling their personal information in compliance with the latest EU laws.

SOC 2 Type II

Lattice ran a SOC2 readiness assessment and are on track to complete the certification process by end of 2019.

Coming soon

Ongoing Commitment to Security

Penetration Tests

Lattice works with an industry leading security firm to perform bi-annual network, infrastructure and application layer penetration tests.

Employee Trainings

Security is a company-wide endeavor. All employees complete an annual security training program and employ best practices when handling customer data.

Secure Software Development

Lattice utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.

Security Team

Lattice employs onsite staff responsible for reviewing, updating, testing and maintaining our security and privacy policy.