Providing trust and confidence on a global scale

More than 6,500 customers trust Smarsh to protect their most valuable asset

Security and compliance

Smarsh maintains the highest commitment to the security of your data. Our data centers, including those of Azure, AWS and AWS GovCloud, are equipped with strong security controls. All of our data centers are fully redundant, with externally audited SSAE16 SOC 2 reports, floor-to-ceiling walls, key-card biometric readers, and 24-7 surveillance and security. Other features of our security and compliance offering include:

  • Secure configuration using industry standard benchmarks
  • Data encryption, both in transit and at rest
  • Authentication, single sign-on and multi-factor identification
  • Proactive performance and security monitoring, including vulnerability management and remediation
  • Regular independent application and network security penetration testing
  • Robust business continuity and disaster recovery programs, including periodic testing for effectiveness
  • Physical and logical data center access restrictions; access is granted only to certain Smarsh employees, with rigorous background checks prior to access
  • The Smarsh Professional Archive successfully underwent an audit for HIPAA / HITECH in 2020
  • All data stored in an immutable, WORM-compliant format to satisfy FINRA, SEC, CFTC, FCA, MiFID II and other regulatory requirements*

    *For specific advice regarding your compliance with laws and regulations applicable to your business, you should consult an attorney

Privacy

There is no higher priority at Smarsh than the privacy of our customers' data. Unless legally required to do so, or directed by our customers, Smarsh does not share customer data with third parties. Factors relevant to our privacy stance include:

  • Smarsh self-certifies to the EU-US Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework
  • Clients have the ability to access and delete their data archived with Smarsh
  • Personal data processed on behalf of clients is retained as long as it is required for the provision of services, or for the length of time requested by our clients
  • Smarsh employs CIPP-trained privacy and security personnel

Stay up to date with the latest resources

Archiving and Monitoring For Compliance

Take 25 minutes and see what a modern solution for archiving and compliance looks like.

mobile text connection touch stats featured img
The Effect of Remote Work and Collaboration Tools on Information Governance
Read more
compliance laptop discovery legal review featured img
Recent FINRA Enforcement Trends and What to Expect in the Future
Read more

Still have questions?

Talk to our team who will walk you through our partner models and the different options to fit your business.

Get a Quote

Tell us about yourself, and we’ll be in touch right away.

Smarsh handles information you submit to Smarsh in accordance with its Privacy Policy. By clicking "submit", you consent to Smarsh processing your information and storing it in accordance with the Privacy Policy and agree to receive communications from Smarsh and its third-party partners regarding products and services that may be of interest to you. You may withdraw your consent at any time by emailing privacy@smarsh.com.

Contact Us

Tell us about yourself, and we’ll be in touch right away.

Smarsh handles information you submit to Smarsh in accordance with its Privacy Policy. By clicking "submit", you consent to Smarsh processing your information and storing it in accordance with the Privacy Policy and agree to receive communications from Smarsh and its third-party partners regarding products and services that may be of interest to you. You may withdraw your consent at any time by emailing privacy@smarsh.com.