Start your first meeting in under 5 minutes (templates) or request a personal demo
Trune-Safe-space

DATA

SECURITY

Rather than building security-critical components by ourselves
we use industry-proven, secure components and infrastructure
from experts, including:

EXPERTISE FROM THE EXPERTS

trune_Security_11

GOOGLE CLOUD INFRASTRUCTURE

Rather than managing our own infrastructure we use hosting services and database services from the Google Cloud Firebase Platform. While outages and data loss could can happen on the Google maintained infrastructure, they would be much more likely if one maintained one’s own infrastructure. The Google Cloud Firebase platform also has a number of certifications, like ISO 27001, SOC 1, SOC 2 and SOC 3 etc. as well.

trune_Security_10

SENSITIVE INFORMATION SECURED

We do store email addresses, and potential profile pictures, in our Firebase database as this is necessary for Trune to work as intended. However, we do NOT manage any other personal data. For instance, passwords for email authentication are securely stored in the Google Firebase Authentication Service and we use an industry-proven third-party component to handle registration, authentication, password reset procedures, the email verification process, etc.

trune_Security_13

EXTENSIONS & INTEGRATION

The components to integrate with security-critical third-party services are secured and maintained by certified experts. For instance, for payment and invoicing processes we use Stripe and integrate with an officially supported Firebase extension maintained by the Stripe team.
trune_Security_09

MULTIPLE LAYERS OF SECURITY

We have implemented an authorization system in Trune to ensure a user can only access the data that they should. For additional security we even go one level further: we have structured the data in two collections. The registeredUsers collection contains for each user a separate object with user relevant information and only the authenticated user can read/write their own object. The teams collection contains all data for a team, like team info, templates, sessions, cards, action items, etc. Only users who have joined the team and, if enabled, also guest users can read/write team information. Based on this data structure. We have built a second layer of security on the backend by using a simple set of Firebase security rules.

Trune_pure_logo-Email_150pxX150px_2022-vs1

OUR DEVELOPERS ARE AWESOME!

We could not deal with all the complexity and necessary procedures to ensure every new piece of code or the self-managed infrastructure is as certified and secure as it would be in a trusted IT landscape. Therefore, we leave these security-critical topics to leading companies that spend billions of dollars to ensure data security.
And the best part: our developers have more time to focus on Trune.

EXPERTISE FROM THE EXPERTS

trune_Security_07

TWO FACTOR AUTHENTICATION

2FA is mandatory for all employees with access to production services

trune_Security_06

ENCRYPTED CONNECTIONS

All connections are encrypted using SSL/TLS technology

trune_Security_02

STRIPE INTEGRATION

Integration component secured and maintained by Stripe team

trune_Security_05

MAILCHIMP INTEGRATION

Integration component maintained by Firebase and Mailchimp team

trune_Security_04

DATABASE SECURITY RULES

Every single read/write request has to pass a manageable rule set

trune_Security_03

PAYMENT DATA

Credit card numbers are not stored in Trune but securely with Stripe

Trusted by the worlds best teams
2024_Startseite_trune_Astro-image_vs1

READY TO LIFT YOUR TEAM TO THE NEXT LEVEL?