OneSignal Brings Enterprise-Grade Privacy and Security Advancements to World’s Most Popular Customer Engagement Platform

Santa Clara, CA, June 9, 2020 — OneSignal, Inc., the leading global provider of push notifications and in-app messaging solutions, has announced it is now Privacy Shield Certified and has shipped new security features, including Two-Factor Authentication (2FA), to all its users. With nearly one million users and organizations relying on OneSignal’s customer engagement platform, these newest security features illustrate OneSignal’s overarching commitment to maintaining the trust and safety of its customers’ privacy.

“Ensuring our customers’ privacy and security remains one of our highest priorities,” says George Deglin, CEO and founder of OneSignal. “Our product and policy teams have worked together to make sure our trusted platform and product are more secure, for both OneSignal users and their customers alike.”

While Two-Factor Authentication has emerged as an industry standard practice, OneSignal has gone above and beyond to ensure security by comparing all user passwords against a database of over half a billion real-world passwords that have previously been exposed to data breaches. These security advancements bring forth the most stringent privacy policies for compliance surrounding GDPR, CCPA, and other emerging consumer privacy policies across the globe.

Privacy

OneSignal complies with The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from the European Union, United Kingdom, and Switzerland to the United States. To learn more about the Privacy Shield program, and to view the OneSignal certification.

Security

Two Factor Authentication (2FA):  2FA is how financial institutions, major companies, and others secure confidential information and confirm user identity. To help businesses of all sizes be better protected, OneSignal has made 2FA available for free, allowing all its users to confidently use OneSignal knowing that they are protected against unauthorized access to their accounts. OneSignal also supports login via OAuth providers including GSuite, Google, and Github, which provide their own protective measures against account takeover.

Email Updates for Account Changes: OneSignal will now email users when authentication tokens are reset or passwords are updated. This helps keep users apprised of any suspicious activity as soon as it happens.

User Authentication Key Reset: User authentication keys are now hidden by default, and viewing user keys or resetting passwords will disable the previous key

Leave a Reply