FMG is proud to keep your data safe utilizing industry standard best practices. We showcase this commitment in a variety of ways.
Most importantly we demonstrate this by undergoing audits of our practices against the SOC for Service Organizations: Trust Services Criteria (or SOC2) published by the AICPA.
In order to present a more detailed and directly applicable understanding of our practices, we also publish a response to the Cloud Security Alliance’s Consensus Assessment Initiative Questionnaire (CAIQ), which you can download from their website here.
If you are a current or prospective customer, you can ask for more detail about these policies. This includes important topics such as:
FMG takes cybersecurity/data security (what’s the right term?) very seriously. We partner with Amazon AWS and Google Cloud Platform, the industry-leading cloud platforms, to provide:
We complement our internal security expertise with external partners to review and test every aspect of our platform and security policies and procedures. This includes a penetration test of the platform conducted at least annually. The most recent report is available upon request.
The majority of data we require is public and intended to go on your website or social media. Any sensitive personal data, such as billing information, is secured in separate systems maintained by industry leaders in data security. We will never ask you for unnecessary personal data.
Everybody at FMG must pass a thorough screening at the time of hiring, with elevated requirements for positions involving access to sensitive data. We also require regular training on security procedures and periodically review employee data access.