The protection of your shared content and personal data is a core feature of the Harkster platform. The trust of our users is important to us and we welcome any feedback.
All data transmitted to and from the Harkster platform on both the web and mobile applications is protected using 256-bit TLS encryption. Transport Layer Security (TLS) is a protocol that ensures privacy between communicating applications and their users on the Internet. When a server and client communicate, TLS ensures that no third party may eavesdrop or tamper with any message.
Harkster uses a cloud provided authentication service to host and secure our user authentication process with the option of multi-factor authentication for enterprise customers.
Within the Harkster platform, user permissions can be managed at the workspace level. These permissions allow the admin user to control who has admin rights within a workspace, who has permission to create channels and publish in new/existing channels within a workspace and which users have access to browse the channels available in that workspace.
All publishers who create channels have the ability to set the access to that channel within channel settings to private, internal or public. A private channel is only visible to the owner, and anyone directly invited to follow that channel. An internal channel is visible to any publisher/follower within the same workspace as that channel. A public channel is visible to any user of Harkster via the 'Explore' page. Both public and internal channels have the option for new followers to require approval by the channel owner before being granted access. By default, when a channel is created, it is set to private.
Harkster uses Microsoft Azure hosting infrastructure.
The Azure infrastructure has more compliance certifications than any other infrastructure including ISO 27001, HIPAA, FedRAMP, SOC 1, and SOC 2. Their globally distributed datacentres are interconnected to form a large and resilient network incorporating content distribution, load balancing and redundancy. The physical datacentres are protected by state-of-the-art security.
Microsoft ensures high availability through advanced monitoring and incident response, service support, and backup failover capability.
All data is stored and encrypted at rest (AES-256).
Card information is transmitted, stored, and processed securely by a provider certified to PCI Service Provider Level 1 – this is the most stringent level of certification available in the payments industry. All transactions are processed using secure PGP encryption and card numbers are encrypted at rest with AES-256.
Please get in touch and we'll be happy to answer your questions.