CoSell undergoes regular penetration testing and security reviews, designed to be GDPR compliant, and encrypts data at rest and in transit. Our users and customers entrust sensitive data to our care.

Our Terms of Service and Privacy Policy outline what you agree to when using CoSell, and the procedures we take to ensure that your information is handled responsibly, and in accordance with applicable data protection and privacy laws.

CoSell uses Amazon Web Services (AWS) for the hosting of staging and production environments. AWS data centers are monitored by 24×7 security, biometric scanning, video surveillance and are SOC 1, SOC 2, and SOC 3 certified.

Data is encrypted in-transit using bank-grade TLS 1.2. Data is encrypted at-rest using 256-bit encryption via native AWS capabilities.

CoSell is GDPR compliant. Organizations in the EU or who employ EU-based individuals can rest assured that CoSell is handling their personal information in compliance with the latest EU laws.

General Data Protection Regulation Addendum

Subprocessors List

CoSell is compliant with service provider requirements under the California Consumer Privacy Act. We're committed to work with our clients to fulfill any CCPA requests received.

California Consumer Privacy Addendum