Phishr Limited Trust Center
At Everhold (Phishr Limited), security and privacy aren't just priorities—they're built into everything we do. We maintain SOC2 compliance through continuously monitored controls, giving you real-time confidence in our security posture.
Trusted By
Tech Ahoy
Spider Group
Integrita Systems
M3 Networks
AMP InfoSys
On-Site PC Services
Peak SolutionsResources
Data Classification Policy
Board of Directors Charter
Information Security Policy
Baseline Hardening Policy
Incident Response Policy
Controls
Password rules enforced
Source code access restricted and changes logged
Production access keys restricted and key management services
Access control procedures
Least-privilege access strictly enforced for produciton infrastructure
Data encrypted at rest
Secure disposal of electronic media containing sensitive data (PII, ePHI, etc.)
Customer data deleted after termination
Data Retention and Secure Deletion Policies
Documented security & privacy risk management process
Source code changes tested and approved
Outsourced development security requirements managed
Documented secure development and emergency change procedures
Secure connection means utilized
Web application firewalls configuration
Anti-malware monitoring
Intrusion detection tool
Infrastructure firewall
Centralized Log Collection and Monitoring
Automated system capacity and performance monitoring
Incident response procedures documented
Business continuity & disaster recovery plans documented and tested
Security incident logging and review
Business continuity plans ensure emergency functionality
Visitor sign-in, badging, and escort policy
Technology assets inventoried
Documented Vendor Management Program
Annual risk assessments performed
Confidentiality Agreement acknowledged by employees
Background checks performed on employees
Background checks performed on contractors
Security awareness training implemented
Whisteblower mechanism maintained
Multi-availability zones
Documentation available to internal and external users
Customer support channels available
Automatic Session Timeout Enforcement
Information security policies and procedures
Authorized Communication of Material System Changes
Confidentiality Agreement acknowledged by contractors
Patch management process developed
Subprocessors
GitHubCode & Build Security
AWSCloud Infrastructure & Platform Services
GrafanaLogging & Observability
HubSpotBusiness Apps & Productivity