Security of the highest level

Keep your data safe and private

At Driff, security and trust are built into the fabric of our platform. To keep your data safe and private, we certify with industry-accepted standards, so you can rest assured that your most sensitive data is protected 24/7 in the cloud.

User data is stored securely in Digital Ocean servers inside the EU.
Meaning it benefits from its security model and highly-scalable infrastructure.
Digital Ocean offers top-class security protection that will keep all your data, files, and more safe in their secure-data centers.

✓ Secure-by-design infrastructure infrastructure
✓ Network security and segmentation
✓ Endpoint security (and device management)
✓ Data security and governance
✓ Identity and access management
✓ Application security
✓ Security monitoring and operations
✓ Governance, risk, and compliance
✓ Continuous availability

Full commitment to GDPR compliance

The EU) General Data Protection Regulation (GDPR) strengthening the rights that EU) citizens have over their data. Driff is committed to GDPR compliance. We keep your data in its own sandboxed space, and only store the personal data required for your work environment.

✓ Data minimization
✓ Integrity and confidentiality
✓ Full access to your data
✓ Data portability

High adoption with SSO authentication

Single Sign-on with your Google account
Driff supports single-sign-on (SSO), an important cloud-security technology that reduces all user application logins to one login. With SSO, users can simply log in with their Google Workspace credentials. This offers protection from unauthorized users accessing sensitive company data, and makes logging in super convenient for employees.

SAML authentication
Driff supports SAML (Security Assertion Markup Language), an open standard for exchanging authentication and authorization data between parties. SAML enables the use of Single Sign-On and makes users’ lives easier and safer, because one set of credentials can be used to log into many different websites.(coming soon)

And specific settings as:

✓ Force Google login on your Domain
✓ 2factor authentication via your Google Login
✓ 2factor authentication via SMS (coming soon)
✓ Password refresh policy (30, 60 or 90 days)
✓ Default password requirements
✓ Activity monitoring
✓ Driff access based on country/role (coming soon)
✓ Login history (coming soon)
✓ Full data encryption