Security

As a data processor, Organizer i Sverige AB is responsible for the technical and organizational security measures in and around Organizer. This means that we, at Organizer, must ensure the necessary security is in place, such as encrypted storage, access control, the ability to create register extracts, and delete personal data. When the program lacks functions to handle personal data, we have internal routines for this. The measures Organizer takes are described in more detail below.

Authentication and Encryption
All data communication uses Secure Sockets Layer (SSL). To access the Services, you must log in with a username and password. We also support two-step authentication, which we recommend for additional security for your accounts.

Organizer uses encrypted communication in the form of 256-bit SSL encryption and 2048-bit RSA public keys. All data communication to and from user computers is encrypted with SSL, the most widely used internet standard for encrypted communication. Organizer applies password protection where the login process is fully encrypted, meaning no information is sent as unencrypted text. The user’s password is saved in a one-way encrypted format (with a standardized one-way cipher and “salting”). The customer is always responsible for the risk of unauthorized use of the Services that results from a user leaving a logged-in computer unattended. There is continuous verification of users. Every request to Organizer’s servers involves a check of the logged-in user’s permissions.

Storage and Backups
Organizer is operated on servers in a data center that is monitored around the clock, and staff are always available. Data storage is on our servers at Cleura, with continuous database backups.

The data center is equipped with alarms and climate systems, as well as very high security. High-capacity connections ensure users’ access to Organizer.