How secure is your data with us?

The esg2go platform was originally developed for medical registers, the sector with probably the most sensitive data of all. Data security and protection are therefore of central importance to us.

Before you read on: Now it gets very technical. If you have any questions, please contact us and we will be happy to explain all the details and our standards to you personally.

Who owns your data?

Stupid question, it’s also rhetorical: Only you. You decide what happens to your data and who has access to it. That is very important. Whereas with other ratings you relinquish control over the use of the rating when you enter it, with us you always have control and an overview.

In the area of data protection, we work closely with official bodies and have had our data protection documentation drawn up by a renowned lawyer from a Big 5 law firm. In Germany, we are represented in the exclusive TMF Toolpool.

Where do we store your data?

Our servers are located in ISO-certified Tier 4 high-security data centers in Switzerland. With redundant RAID hard disks and duplex servers that mirror each other, we are protected against data loss.

In addition, we create continuous backups of the data and data history – both on the mirrored servers and at an additional external location.

In the event of a physical failure and data loss, we can restore the system at any time and at any point in time.

A man works on the computer in the data center

How secure is your data during transmission?

We work with separate databases, SSL-encrypted transmission, IP blocking, cryptographically secured or company-specific encrypted master data and two-factor authentication. More security is almost impossible.

We also trace all movements in the system. We can therefore check at any time who entered or requested what and when.

Now it’s getting really Swiss: our certificates.

Swiss Cleantech

The cornerstone system “AQC” for esg2go is ISO certified by the standard of quality management ISO 9001:2015 (since September 2006, SGS Certificate CH06/0722). The organizational process is standardized, doubly secured, and transparently documented. There are measures for critical cases and constant improvement is ensured.

We also test ourselves regularly.

And not just in terms of sustainability, but also in terms of safety. We test the worst-case scenario in security audits. We have all systems extensively checked by external security experts. The servers are on the newest and highest technical level to prevent third party access and malware, and are penetration tested. Additionally, all programs undergo a code review to determine any possible weak points. The safety reports confirm these points. Additionally, all programs undergo a code review to determine any possible weak points.