BINGO Security

Data that is transferred between your browser and our servers is encrypted using SSL. You can see that in the address bar – it starts https:

Data centre security

BINGO is hosted in Microsoft Azure, a highly secure and scalable cloud computing platform. As one of the world’s leading platforms, Microsoft take security extremely seriously. Read more about it here: https://www.microsoft.com/en-gb/trust-center/product-overview

Where is my data?

BINGO is hosted in Microsoft Azure’s European Azure data centres in UK.

If you choose to use BINGO with your own Azure subscription you can choose the location of your Azure SQL database.

Security testing

Donorfy is developed and tested according to the standards of the Open Web Application Security Project (OWASP). For authentication, access control and encryption we use components and technology provided by Microsoft and other major technology companies. Periodically our software is reviewed and tested by external experts and their findings and recommendations are fed back into our development processes and wider business practices. Beyond the above we do not publicise further details of our security.

OwnAzure clients may request penetration testing, at their own cost. Please contact us for more information.

Data Protection

In the eyes of the GDPR we are the Data Processor. As such we have a comprehensive data processing agreement which sets our commitments and obligations as your data processor. This is updated from time to time in line with legislation and improvements. The full DPA can be viewed here.

Sensitive data

Credentials such as passwords and API keys are strongly encrypted. BINGO does not store any usable credit card or bank account details. They are stored by the payment processors’ systems (see Integrations) which themselves are subject to the strictest compliance regulations.

Unusual login reporting

BINGO notifies users of logins from previously unknown locations. This enables you to take necessary action (eg. changing passwords) should you suspect anything.

Backup

Data is backed up daily to Microsoft Azure Server.

Availability

We monitor and log access to the service 24/7 and receive alerts for any unexpected incidents that may need our intervention.

User access

You have control over who can access your organisation’s BINGO account. You invite the users you want. We too have access for support purposes – it helps us answer any questions you have much more effectively and quickly.

2-factor authentication

BINGO is equipped with 2FA, using the Microsoft and Google authenticator apps.

Getting access to your data

You can download your data at any time from BINGO using the Lists feature.

The Data Service

The Data Service provides an OData feed for consumption in reporting services such as Microsoft Power BI, Excel or Tableau. This service is restricted by user permission and IP address enablement.