Super convenient to see all customer data directly on your screen during an incoming or outgoing call, but how secure is such a solution that does something with customer data from your CRM? We regularly get questions about how we at Red Cactus handle customer data from CRM applications. In particular, the question of whether customer data is stored outside the CRM application comes up a lot, which is understandable given the consequences a data breach can have for organisations and individuals.
Storing data outside the CRM application
Basically, building a CRM integration is not difficult, but it is if you do it according to the standards we impose on ourselves. When developing our applications, we maintain the vision that customer data must be accessed in a responsible way. For us, there is then only one way possible; real-time communication with the CRM and not storing customer data from the CRM outside the CRM application itself. This way, customers and partners keep track of where their CRM data is and there is no additional risk of a data leak. As this is unfortunately not the standard in the world of integrations and we still see data being synced to storage sources outside the CRM, a Red Cactus partner therefore has a huge competitive advantage in this area too with customers who want to handle CRM data carefully and responsibly.
Encrypted communications
When developing a CRM integration, our starting point is that traffic between integration tool Bubble and a CRM application should take place encrypted based on HTTPS traffic. If possible, we apply double SSL authentication. The data to connect on the computer (as well as the traffic passing over our websocket) is encrypted based on AES-256 encryption. This is a quantum-resistant encryption that meets military requirements. Our infrastructure also meets the highest standards. The various resources we use within the Microsoft Azure platform are ISO-certified (ISO 200000-1:2018, ISO 22301:2019, ISO 27001:2022, ISO 27017:2015, ISO 27018:2019 and ISO 9001:2015).
Documentation
Of course, we have detailed information available on how we process personal data. Check the "processing personal data" documentation on our knowledge base by clicking here (please note, only available to partners who are logged in).