Data Encryption

  • Data in Transit: Our cryptography controls use Hyper-Text Transfer Protocol Secure (HTTPS) over Transport Layer Security (TLS) version 1.2 and higher using 2048-bit key length, and Internet Protocol Secure (IPSec).
  • Data at Rest: xMatters uses Data at Rest Encryption using GCP Key Management Service (KMS). All data is encrypted using 256-bit Advanced Encryption Standard (AES-256), and each encryption key is itself encrypted with a regularly rotated set of master keys. xMatters is the only entity that possess the keys for the Data at Rest Cryptographic Controls within GCP and therefore Google does not have access to the data. Each client database is protected using schema separation.

Client Data Protection (Classification and Handling)

  • Data as an Asset: Our data strategy treats data as a valuable asset, provides direction to organize activities, and directs us towards our goal of supplying better business value to our customers. All client data is confidential and only accessible to the owner of the data and limited xMatters Support personnel (based on strict role-based access control). The level of security is identified based on the information classification performed and customer data is always classified at the highest level.

xMatters is also fully GDPR compliant.