You can feel confident that your employee data is safe while working with Learned.
Learned is GDPR compliant. Our data and server is stored in Germany at Google Cloud. More information can be found in our SLA and Data Processing Agreement.
“Learned’s Customer Success Team is always super accessible and easy to reach. If I need support, they help me right away.”
All communication with Learned (via chat or email) is always encrypted with the latest version of TLS.
The data is stored at Google Cloud in Germany with a MongoDB database. See our Data Processing Agreement for more information about our IT landscape.
TLS and authentication (SCRAM) are a standard part of Google Cloud. Data sent to the database (in transit) is encrypted using TLS. Encryption for data in rest is automated using Google Cloud Platform transparent disk encryption, which uses Advanced Encryption Standards (AES-256).
Logging in has never been easier with SSO from Microsoft Azure and Google.
Additional verification is possible with MFA. Can also be made mandatory company-wide.
Authorization and Rights and Roles
Authorization can be set up manually or automatically through integration with the personnel administration system.
Need to know
Backups are automatically stored with Google Cloud. Per-minute backups (for point-in-time restore) can be restored. Backups are kept up to 7 days back and are stored encrypted.
At least once a year, an external party performs a pentest on the Learned platform.
All employees must complete a training course on information security. Additional training is also organized several times a year.
All information incidents are logged. Based on urgency and impact, incidents are resolved. See our SLA for more information.
All users can chat in real-time with our support team for questions and/or incidents. See our SLA for more information.
Customers can always export their data from the platform without Learned’s intervention. For this, they can use CSV or PDF exports. Part of the SLA is an exit procedure.