Tackle is SOC 2 Type II Certified 🚀 Learn more

Enterprise-grade security

Privacy and data protection you can rely on

Comprehensive privacy and enterprise grade security programs to help protect and empower your organization and team's work.

TRUSTED BY TEAMS AT

client-logo-uber
client-logo-oreilly
client-logo-peloton
client-logo-up-work
client-logo-dropbox
TimeTackle Security

How it helps

Network, application, and data security is vital for any enterprise solution.

We are SOC2 Type II certified and our systems and processes are independently audited and tested annually. For network security, we use TLS 1.2 and Google Cloud Platform data centers certified with ISO 27001 and SOC2 compliance. For our code, infrastructure, and tracking of outside threats, we use Google Cloud monitoring services.

encrypted enterprise grader security
Enterprise-level encryption

We enforce TLS 1.2 everywhere. Data at rest is encrypted by default and we secure all sensitive information with strong hashing algorithms like AES-256 and AES-128.

GDPR-compliance_enterprise-grade-security-04 (1)
GDPR compliance
GDPR is a priority to us. We have specific processes and tools in place to ensure compliance and protect your data and privacy.
Penetration & security audits
Our systems are penetration tested and audited annually by an independent security firm.
Data encryption in transit and at rest

We use TLS 1.2 to encrypt the data in motion and follow several security measures to help ensure the authenticity, integrity, and privacy of all data in transit. We also use the Google Cloud Platform which encrypts data at rest and is managed the same way as Google’s production services.

penetration enterprise grade security
Annual penetration tests

We penetration test our service annually to make sure our application and infrastructures are not vulnerable. We also make sure our code goes through a thorough code review process.

Principle of least privilege policy

Application infrastructure is completely hosted on Google Cloud with the least privilege access policy. We also have logging in place to audit any authorized access. Furthermore, our application infrastructure is completely separated from our public-facing website for enhanced security.

Frequently asked questions

When you log in to Tackle you provide Tackle permission to read your calendars. This is read-only permission, which means, we can’t write or edit any information on your calendars. This permission enables features like calendar exporting.

If you want to use the Google Sheets Sync feature then you will need to provide additional limited write permission to your Google Drive. This additional permission allows Tackle to create new files to your Google Drive. Tackle can only read and edit files created by itself. The application can not access any other files in your Google Drive.

Yes. Tackle is SOC2 Type II certified. Moreover, we are completely hosted on Google Cloud Platform (GCP) which is compliant with these standards and has been for several years.
We use Stripe as our payment service provider. Stripe is certified to PCI Service Provider Level 1. This is the most stringent level of certification available. So you can be rest assured that security is not an issue.

Yes, of course! Once you set a data retention period, Tackle will automatically delete data older than the retention period from its storage and database.

* This feature is only available to our business users

Using our product does not in itself meet HIPAA (Health Insurance Portability and Accountability Act) compliance standards. The duty to comply still rests with the account holder and is dependent on what data is collected and how it is shared. However it is possible to use our system without breaching any of those requirements.
Login is secure using secure OAuth 2.0 authentication with single sign-on (SSO) provided by Google or Microsoft. Application programming interface (API) secured through HTTPS.
We protect all customer data at the storage and database level using Google Cloud Platform (GCP) encryption at rest mechanisms. At the account level, customers can set their own data retention limits.
Tackle is a California LLC , based in San Jose, CA, USA. Our data centers are in the United States using Google Cloud.
We aim for 99.99% uptime. We use active monitoring and alerting using Google Cloud Monitoring. For internal anomalies, we use Google Cloud Logging.

You’re in good company

A few of the amazing brands who trust us with their time

Trusted and used by 300+ teams

Ready to learn more?

Let our experts show you how to use Tackle to optimize your schedule or your team’s time in a 1:1 live demo.

Use Tackle to optimize schedule