Committed to Privacy & Security
We are fully committed to providing features that help you be compliant with privacy regulations by taking a privacy by design approach. As well as partnering with the best in class security providers to keep all your data safe.
Enabled compliance
Lawful basis and transparency
As part of our compliance to data protection regulation, we enter into Data Processing Agreements (DPAs) with all our customers. This DPA, a binding agreement signed between the controller and the processor when the latter processes data from the controller, details the standard contractual terms required under the GDPR. We are also transparent as regard internal organizations and processes and as regard the sub-processors, we are working with.
Accountability and Governance
Air360 has appointed a Data Protection contact to monitor GDPR compliance, assess data protection risks, advise on data protection impact assessments, exchange with clients and cooperate with regulators.
Air360 privacy features
Privacy by default – minimization
Air360 automatically disallows the capture of any directly identifying data that a user enters in an input field of your web store. In addition personal data we are processing are immediately pseudonymized, if not anonymized when Air360 is used “cookie-less.”
Exercises of right
We are committed to assist you in order to respondent efficiently to exercises of rights requests from given users, based on GDPR provisions as right of access, right of erasure, right etc. As regard right of erasure, Air360 offers a function that will allow you to delete a specific user and related sessions with just a single click. As regard right of access and data portability as example, You can retrieve specific user details simply by going through our application or using our API.
Restrict specific data acquisition
Air360 enables you to go further by also hiding explicitly parts of your pages from being recorded during session replays.
Secure data handling & protection
Limit Access to your dataAir360 follows strict data security regulations to ensure that we secure and limit access to your data.
Air360 Security Measures
Monitoring of our Tracking pixel
Constantly conducted to detect any malicious modification and ensure its delivery, integrity and safety.
State-of-the-art encryption
Used in all Air360 products for data in transit and at rest.
Multi-Factor Authentication (MFA)
Required for all our users to access to Air360 application adding an extra layer of security and keeping your accounts safe.
Third-party security audits
Conducted regularly and before major releases, including penetration tests and vulnerability scans.
Security best practices
Reviewed by third party companies regularly when important updates are performed on our systems.
Customer data processed & stored in the EU
Although Air360’s headquarters are located in Japan, Air360 core systems are hosted on OVHcloud and Amazon Web Services (AWS) servers located in France and Ireland and leverage all the security and compliance provided by OVHcloud/AWS: ISO (9001, 27001, 27017, and 27018), SOC 1, 2, and 3, PCI DSS.