We are interested in moving our LimeSurvey installation from our own servers to the your Cloud. Before we can do that, our legal team is requesting a security audit or report (like SOC2), providing verification of security measures you have in place.
Is this type of audit/report available? And how would I go about retrieving it?
I think you need to open a support ticket. The forum is mainly run by volunteers regarding the community edition. We have no insight into the internals of Limesurvey GmbH and their hosted solution.
Help us to help you!
Provide your LS version and where it is installed (own server, uni/employer, SaaS hosting, etc.).
Always provide a LSS file (not LSQ or LSG).
Note: I answer at this forum in my spare time, I'm not a LimeSurvey GmbH employee.
Is this type of audit/report available? And how would I go about retrieving it?
Till today I haven't seens an third party audit as part of the LimeSurvey Cloud contract.
You can preview the GDPR Agreement for an LimeSurveyCloud contract via your Account unter General Preferences:
account.limesurvey.org/account/your-account
The technical addendum shows some things they do to protect your data.
In Germany they use Hetzner datacenter.
www.hetzner.com/unternehmen/rechenzentrum/
In the GDPR agreement you can choose the datacenter location and get the name of the datacenter.
But asking presale/support will make more sense than writing here ,-)
