How we handle your CRM data 

The following information from your CRM is always stored in vizrm systems:

• Organization CRM IDs (unique identifiers for data points in your CRM system)

• Organization names

The following information from your CRM is only stored when not using the manager field setting (learn how to implement the manager field here: https://help.vizrm.com/en/articles/6445699-crm-integration#h_909fe9dae7 )

• Person CRM ID

• Person Name

Further additional information from your CRM is stored in system logs for error investigation. This data is not used by vizrm unless a customer contacts us for system support in which case our policy requires customers approval and vizrm management approval to analyze the logs.

How we protect your data

With the exception of the above mentioned, vizrm only retrieves data from your CRM and visualizes it in your browser. There are multiple measurements in place to make this process secure:

1. Authentication with your CRM is done with OAuth 2.0 and under the same permissions / user access rights implemented in your CRM

2. Encryption of your data in transit is achieved using HTTPS (TLS/SSL)

3. Authentication toward the vizrm database is enforced with Secure Session Management using signed cookies to access sessions saved on Azure Storage

4. Data at rest is secured: using mongodb to access database, parameterized queries and contextual escaping.

5. The vizrm database and servers are hosted on Microsoft Azure (more information on Microsoft security: https://servicetrust.microsoft.com/viewpage/ISOIEC)

How we monitor and improve data security 

vizrm employs rate limiters and protection provided by Azure to monitor and limit data transfers. Further we use the API request limits provided by your CRM.