by Damian Hamp-Adams | CEO
As a trusted partner, here’s what Rocketseed’s commitment to data privacy, data security and business integrity means for you.
What ‘trust signals’ do you look for when choosing a service provider? Is it ISO:27001, HIPAA, GDPR, or something else?
After all, trust is essential to any successful business collaboration.
From the ‘soft’ trust signals of transparency, reputation, professionalism, and authenticity to the compliance-based ‘hard’ trust signals of data privacy, such as HIPAA, data security, such as ISO:27001, and business integrity, such as anti-bribery policies. Rocketseed works tirelessly – and invests heavily – to give our customers and prospects across the globe the peace of mind that comes from total trust.
And what about our hard trust signals? We understand the crucial significance of these ‘hard’ trust indicators in choosing software/SaaS providers, especially regarding branding your business’s most active communication channel. As a company with a global customer base, Rocketseed complies with the state, national, and international laws in all jurisdictions where we and our customers operate. This includes adhering to data privacy laws like GDPR, POPIA, and HIPAA and meeting ISO:27001 international information security criteria, such as following best practices for business integrity.
Let’s look at these in turn…
Email Data Security under ISO
ISO 27001:2017 is the standard for information security management systems that helps organizations manage the security of assets like financial information, intellectual property, employee details, and information entrusted by third parties.
By adhering to ISO 27001:2017 standard, Rocketseed demonstrates our commitment to protecting all our information assets, not just personal data, meaning enhanced data confidentiality, integrity, and availability for our customers, reducing the risk of data breaches. In practice, this means we are dedicated to the highest digital security standards to ensure your complete trust.
The scope of ISO 27001:2017 encompasses all individuals and processes within the organization and is now a prerequisite for all employees and subcontractors who handle company data. To support the policy’s aims, Rocketseed conducts regular risk assessments, monitoring, and testing to identify potential security threats and assess the effectiveness of our control measures. With ongoing evaluation and enhancement of the ISMS (Information Security Management System), Rocketseed ensures it remains effective against emerging threats.
Continuous improvement is part of our company culture and is critical for our success. Our ISO certification is proof of our unwavering dedication to our internal systems and to providing the highest levels of security to our global customer base.
Email Data Security under OWASP
While ISO is more wide-ranging, Rocketseed’s commitment to the Open Worldwide Application Security Project (OWASP) remains crucial. This standard means we prioritize our web applications’ security and integrity, ensuring your interactions with our digital platforms are safe and secure.
By incorporating OWASP’s guidelines into our security strategy, we aim to build secure applications that protect user data from vulnerabilities. Best practices are subject to continuous improvement, enabling us to proactively address new and emerging security challenges.
Our development team engages in ongoing education on OWASP protocols, including the OWASP Top Ten Project, a focused examination of the most critical web application security risks. This disciplined approach assures our users that we are dedicated to safeguarding their data by applying the latest web application security standards.
Data Privacy in Email Management & Marketing
Let’s start with the basics: data protection. Rocketseed adheres to the General Data Protection Regulation (GDPR), the Protection of Personal Information Act (POPIA), and The Health Insurance Portability and Accountability Act (HIPAA). We have offices in the UK, South Africa, and the USA; these critical pieces of legislation protect your data. For Rocketseed, it’s additionally essential, not only for us but for our customers, too.
Email Data Privacy under GDPR
In case you’re not aware, GDPR – General Data Protection Regulation – is a regulatory framework enacted by the European Union to protect personal data and uphold privacy rights. It outlines how organizations handle personal data. Organizations that process EU citizens’ data worldwide (that’s the critical point!) must comply with GDPR. Rocketseed ensures data collection transparency, securing explicit consent for data use, providing individuals with control over their personal information, and maintaining rigorous data security protocols.
Our adherence to GDPR means we maintain high privacy and security standards, giving our clients and prospects peace of mind regarding personal data. All data we acquire is processed transparently and lawfully because your privacy matters to us, just as your client’s privacy matters to you. With Rocketseed, you have a partner who understands how the rules are applied. This understanding has made its way into our products: Rocketseed’s automated email signatures allow you to outline your privacy policies easily. It also means you can add an opt-out or links to request data from your clients if needed. GDPR, for us, isn’t just about adherence to regulation. It is a commitment to handling your data with the care and attention you’d expect from us.
Email Data Privacy under POPIA
The Protection of Personal Information Act (POPIA) is South Africa’s answer to data protection, echoing global standards for privacy rights and secure handling of personal information. So, if you are a Rocketseed customer in South Africa, our POPIA compliance guarantees that your personal information is handled responsibly and ethically. We collect and use your data only with explicit consent, ensuring it’s used for defined purposes and safeguarded against unauthorized access or misuse. Much like GDPR, POPIA is in place to protect our customers, prospects, and their data, and it’s an act we’re happily committed to.
For businesses operating within South Africa, including international firms like Rocketseed, which handle South African data, compliance with POPIA is not optional but a mandatory aspect of our operations. However, much like GDPR, this is another part of our commitment to our local and global customer base. We strive for compliance not because it’s mandatory but because it’s a good ethical practice.
Email Data Privacy under HIPAA
The Health Insurance Portability and Accountability Act (HIPAA) is a regulation in the United States designed to safeguard Protected Health Information (PHI). Any company dealing with PHI has to follow comprehensive security measures. For Rocketseed, working with healthcare organizations is part of our business practice and client base, so HIPAA compliance is baked into our data security operations, just as we adhere to GDPR and POPIA.
Business Integrity
As we’ve mentioned, safeguarding trust is not just about complying with data protection or security regulations. Rocketseed is a people-oriented business, and this also means that we’re committed to business integrity, with systems and processes in place to protect people who, alongside customer data, are an essential part of our business.
Anti-Bribery
Our strict Anti-Bribery Policy reflects our commitment to lawful and ethical business conduct. It reassures you that our operations are transparent and free from corruption, giving you confidence that our business dealings are above board.
This policy mandates every employee to be aware of and strictly adhere to the principles against corruption and bribery. Corruption is the abuse of entrusted power for private gain. Bribery is a subset where any valuable inducement is offered or accepted to influence dishonest or illegal actions. As our headquarters are in the UK, the policy reflects Rocketseed’s commitment to legal compliance and ethical business practices, with a rejection of bribery in any form as per The Bribery Act 2010 (UK).
Our specific policy is enacted to demonstrate Rocketseed’s stance on bribery, extending beyond employees to encompass subcontractors, agents, and anyone representing or acting on our behalf. Our approach involves prohibitions and active measures, such as conducting due diligence with third parties to mitigate risks and maintaining transparent transaction records.
In practice, any direct or indirect bribe is strictly prohibited, including any gifts, payments, or other advantages to secure an improper business advantage. However, the policy also recognizes that token gifts and hospitality can be part of building positive business relationships, provided they are given transparently and without expectation of reciprocation. Employees must seek written approval from the Chief Executive for any gifts or hospitality related to our business, and all instances are to be documented. Rocketseed’s commitment to this policy is unwavering, with the company ready to take decisive action against any breaches, demonstrating the seriousness with which it views its ethical responsibilities.
Anti-Slavery
Our stance against modern slavery and human trafficking underlines our ethical business practices and respect for human dignity. This policy ensures that you engage with a company that is compliant, socially responsible, and committed to upholding human rights.
Rocketseed holds a staunch position against modern slavery, a grievous violation of human rights manifesting in forced labor, human trafficking, and other forms of servitude. Our Anti-Slavery Policy Statement is a testament to our commitment to ethical business practices and the dignity of every individual. We are resolute in implementing and enforcing measures to ensure that modern slavery is not a part of our business or supply chain. We conduct thorough checks and due diligence within our supply chains, seeking to partner with organizations that share our ethical standards.
BEE
By actively supporting the Broad-Based Black Economic Empowerment (B-BBEE) initiative in South Africa, Rocketseed is showing our dedication to social responsibility and economic equality. This commitment to diversity and inclusion reflects our broader values as a global company, aligning with the expectations of socially conscious consumers like you.
The Broad-Based Black Economic Empowerment (B-BBEE or BEE) initiative in South Africa represents a significant step towards rectifying the historical economic imbalances and fostering greater inclusion of black individuals in the country’s economy. It’s not merely a policy but a comprehensive strategy aimed at reducing social and political risks by bridging the economic divide, ensuring that the benefits of a thriving, mixed market economy reach all sectors of South African society, promoting shared values, and enhancing socio-economic and political stability.
Rocketseed, with its longstanding presence in South Africa, has been actively supporting the BEE initiative through various business and recruitment practices that reflect its commitment to diversity. The company prides itself on creating a work environment that values people of all backgrounds, ensuring that discrimination has no place and every employee, regardless of their age, race, gender, political or religious beliefs, can contribute meaningfully. This culture is not limited to one region but is a fundamental aspect of Rocketseed’s operations worldwide, exemplifying an inclusive corporate ethos that resonates across all our locations.
What Does This Mean For You?
Together, all these hard trust signals mean that wherever you are in the world, however big your company and however many emails your employees are sending (complete with perfectly branded email signatures and eye-catching, engaging marketing banners!), you can trust Rocketseed to be completely compliant with all data privacy, data security, and business integrity regulations to ensure you and your customers are completely protected.
To see how Rocketseed’s email signature security and compliance can benefit your business…
Maintaining consistency in compliance, security and branding in email communication company wide can be daunting.
Discover why big businesses need more than an email signature generator, and how Rocketseed is the preferred solution for our clients.