Step 3

Accept no compromise on security, business continuity, and compliance

Secure by design no matter where you're working

Protecting customer data as well as you would protect your own is vital to your reputation and ongoing success. Don’t settle for a new UCaaS platform that doesn’t maintain or enhance system security.At 8x8, a focus on high availability across systems, people, and processes mean there’s no risk of a single point of failure across our 35 geographic locations, providing reliability, quality of service, and local data residency. We offer an end-to-end service level agreement (SLA) that covers uptime and call quality. If there is a power failure or internet outage, your employees can plug their laptops into their home networks and continue making and receiving customer calls as if they were still in the office.
That means your business can remain open and accessible to customers across many potential disruptions.

Security, privacy and compliance for everyone

8x8 has prioritized security and compliance certifications to meet the demanding needs of our customers across all industries.8x8 communications solutions have strong data-in-motion encryption and use AES 256 encryption for data at rest to protect customer data.As a result, national and multinational organizations choose 8x8 to help them comply with strict standards, protect their reputations, and secure their customer data. And product security and industry compliance don’t come at a separate cost but are included in the per-user per-month subscription.No other major communications provider has achieved 8x8’s level of advanced, third-party annual audits and verification.

8x8 security and compliance certifications include:

Cloud Security Alliance (CSA) STAR compliance

FCC Customer Proprietary Network Information (CPNI) compliance

Health Information Trust Alliance (HITRUST) compliance

Health Insurance Portability and Accountability Act (HIPAA) compliance

STIR/SHAKEN

National Institute of Standards and Technology (NIST 800-53 R4) and Federal Information Security Management Act (FISMA) compliance

Standard Contractual Clauses (SCC) apply for data transfers between EU and non-EU countries

ISO 27001:2013 and ISO 9001 certified

Certified PCI-DSS 3.2.1 SAQ-D provider

Data-in-motion encryption with Session Initiation Protocol (SIP) over Transport Layer Security (TLS) and Secure Real-time Transport Protocol (SRTP)

EU GDPR compliance

UK Government G-Cloud supplier

UK Government Cyber Essentials Plus accreditation

Australian Prudential Regulation Authority (APRA) compliance

Regional Data Residency with a presence in USA, Canada, UK, Germany, Australia, and Hong Kong