Soc2 Compliance

SOC 2 Type II certified

Comm100 is SOC 2 Type II compliant, so you can be confident in the knowledge that your customers’ data is well-protected according to the strictest standards. SOC 2 certification denotes the highest degree of excellence in security, availability, processing integrity, confidentiality, and privacy of customer dataand Comm100 is proud to be leading the way. 

ISO 27001 certified

When it comes to your customers’ private data, there’s no room for compromise. Comm100 adheres to the highest international standards for network security and data protection. Because a breach is never a situation you want to confront.

PCI DSS compliant

The security of cardholder data affects you and your customers alike. With full PCI DSS compliance, no data is stored in Comm100’s database, and agents can only access the data during the chat session. Stay compliant without additional audits or expenses.

HIPAA compliant

If you’re in the healthcare industry or you serve organizations that deal with Personal Health Information (PHI or ePHI), then you need a live chat solution that complies fully with HIPAA. Trust Comm100 Live Chat to do just that.

Credit card masking

When enabled, you can mask credit card numbers sent directly through the chat window to protect their data privacy. Card numbers are submitted through the PCI form to ensure security.

Visitor Single Sign-On (SSO)

Visitor SSO allows you to authenticate customers before they start a chat, ensuring every customer participating in chat has proven their identity. In addition, you get customer account details in the chat console to provide faster resolution and more personalized service.

LDAP authentication

Crossing platforms and accounts is not only confusing, but a waste of time. With the Lightweight Directory Access Protocol (LDAP) authentication, agents can log in with a single user ID to all working platforms, eliminating the need for various usernames and passwords.

Password policy

Password Policy is a set of password related rules designed to enhance your account security. You can set rules for password length, complexity, expiration date, change frequency, and login attempts.

IP restriction

Easily control access to the Comm100 dashboard and agent console by restricting logins to specific IPs/IP ranges.

TLS encrypted

All network communication in your live chat account is TLS encrypted to ensure account privacy and data integrity.

CAPTCHA verification

Comm100 allows you to make CAPTCHA verification a required step before starting a Live Chat. This ensures your agents will always chat with real people not spam bots. Comm100 also uses CAPTCHA to enhance login security. After a certain number of failed login attempts into the Comm100 platform, users will be required to complete a CAPTCHA test before another attempt.

Audit logs

Audit logs allow you to track all agent activities as well as all changes made to your live chat system, providing accountability and protection across the board.

Secure data center

We use world-class data centers to host our server farm. Our data centers have state-of-the-art security measures and are compliant with standards of SSAE 16, CSAE 3416, and ISAE 3402.

WCAG compliant

Providing world class customer service means accessibility for all. Our live chat platform fully meets WCAG 2.0 AA accessibility standards.

For a complete overview of Comm100’s security practices and features, download our white paper.

Download security white paper