SOC 2 Criteria: CC6.4
ISO 27001 Annex A: A.11.1, A.11.2.1, A.11.2.2, A.11.2.3, A.11.2.5, 11.2.6
Keywords: Facilities, Access Requirements, Asset Security
The Physical Security Policy establishes requirements to ensure that Userflow’s information assets are protected by physical controls that prevent tampering, damage, theft or unauthorized physical access. This policy defines the following controls and acceptable practices:
This policy applies to all Userflow physical facilities and users of information systems within Userflow, which typically include employees and contractors, as well as any external parties that have physical access to the company’s information systems. This policy must be made readily available to all users.
The acting information security officer and team will facilitate and maintain this policy and ensure all employees have reviewed and read the policy.
Physical security of data centers is ensured by Userflow’s cloud infrastructure service provider: Google Cloud Provider.
|Version||Date||Editor||Description of Changes|
|V1||October 20th, 2021||Userflow||Initial Creation|