SurveyMonkey Logo
  • Surveys
  • SurveyMonkey

    Create & send surveys with the world’s leading online survey software

  • Enterprise

    Empower your organization with our secure survey platform

  • Integrations & Plug-ins

    Bring survey insights into your business apps

  • Specialized products
  • Audience

    Collect survey responses from our global consumer panel

  • CX

    Understand & improve customer experience (NPS®)

  • Engage

    Understand & increase employee engagement

  • TechValidate

    Create marketing content from customer feedback

  • Apply

    Collect, review & manage applications online

  • Wufoo

    Gather data & payments with online forms

  • GetFeedback

    Customer feedback for Salesforce

View all products
Survey Types
  • Customer Satisfaction
    Customer Loyalty
    Event Surveys
  • Employee Engagement
    Job Satisfaction
    HR Surveys
  • Market Research
    Opinion Polls
    Concept Testing
  • People Powered Data for business
  • Customers

    Win more business with Customer Powered Data

  • Employees

    Build a stronger workforce with Employee Powered Data

  • Markets

    Validate business strategy with Market Powered Data

  • Solutions for teams
  • Customer Experience

    Delight customers & increase loyalty through feedback

  • Human Resources

    Improve your employee experience, engagement & retention

  • Marketing

    Create winning campaigns, boost ROI & drive growth

  • Education

    Elevate your student experience and become a data-driven institution

Explore more survey types
  • Resources

    Best practices for using surveys & survey data

  • Curiosity at Work

    Our blog about surveys, tips for business, & more

  • Help Center

    Tutorials & how-to guides for using SurveyMonkey

Explore our 180+ survey templates
Plans & Pricing
Log inSign up free
SurveyMonkey-Logo
  • Übersicht

  • Nutzungsbedingungen

  • Rahmenvertrag

  • Servicespezifische Bestimmungen

  • Unsere Datenschutzrichtlinie

  • Datenschutzerklärung

  • Cookies

  • Auf Umfrageseiten verwendete Cookies

  • Richtlinie zur zulässigen Nutzung

  • Sicherheit

  • Allgemein

Schon gewusst?

63 % berücksichtigen die Datenschutz- und Sicherheitsgeschichte eines Unternehmens, bevor sie dessen Produkte oder Dienstleistungen nutzen.

Statistiken Seitenleiste Rechtliches

Security Statement

LAST UPDATED: July 1, 2021

This Security Statement applies to the products, services, websites and apps offered by Momentive Inc., Momentive Europe UC, Momentive Brasil Internet Eireli, and their affiliates (collectively “Momentive”), which are branded as “Momentive”, “SurveyMonkey”, “Wufoo”, and “GetFeedback”, except where otherwise noted. We refer to those products, services, websites and apps collectively as the “services” in this Statement. This Security Statement also forms part of the user agreements for SurveyMonkey and Wufoo customers.

Momentive values the trust that our customers place in us by letting us act as custodians of their data. We take our responsibility to protect and secure your information seriously and strive for complete transparency around our security practices detailed below. Our Privacy Notice also further details the ways we handle your data.

Physical Security

Momentive’s information systems and technical infrastructure are hosted within world-class, SOC 2 accredited data centers. Physical security controls at these data centers include 24x7 monitoring, cameras, visitor logs, entry limitations, and all that you would expect at a high-security data processing facility.

Compliance

Momentive has implemented governance, risk management, and compliance practices that align with the most globally recognized information security frameworks. Momentive has achieved ISO 27001 certification. In addition, the SurveyMonkey Enterprise product is HIPAA-compliant, and our SurveyMonkey, Wufoo, and SurveyMonkey Apply products carry the Payment Card Industry’s Data Security Standards (PCI DSS 3.2) certification.

Access Control

Access to Momentive’s technology resources is only permitted through secure connectivity (e.g., VPN, SSH) and requires multi-factor authentication. Our production password policy requires complexity, expiration, and lockout and disallows reuse. Momentive grants access on a need to know on the basis of least privilege rules, reviews permissions quarterly, and revokes access immediately after employee termination.

Security Policies

Momentive maintains and regularly reviews and updates its information security policies, at least on an annual basis. Employees must acknowledge policies on an annual basis and undergo additional training pertaining to job function. Training is designed to adhere to all specifications and regulations applicable to Momentive.

Personnel

Momentive conducts background screening at the time of hire (to the extent permitted or facilitated by applicable laws and countries). In addition, Momentive communicates its information security policies to all personnel (who must acknowledge this) and requires new employees to sign non-disclosure agreements, and provides ongoing privacy and security training.

Dedicated Security Personnel

Momentive has a dedicated Trust & Security organization, which focuses on application, cloud, network, and system security. This team is also responsible for security compliance, education, and incident response.

Vulnerability Management and Penetration Tests

Momentive maintains a documented vulnerability management program which includes periodic scans, identification, and remediation of security vulnerabilities on servers, workstations, network equipment, and applications. All networks, including test and production environments, are regularly scanned using trusted third party vendors. Critical patches are applied to servers on a priority basis and as appropriate for all other patches.

We also conduct regular internal and external penetration tests and remediate according to severity for any results found.

Encryption

Momentive encrypts all data at rest in our data centres using AES 256 based encryption. Additionally, Momentive encrypts all data in motion using (i) RSA with 2048 bit key length based certificates generated via a public Certificate Authority, for communications with entities outside Momentive’s data centres, and (ii) RSA 256 certificates generated via Internal Certificate Authority, for all the data within the data centre.

Development

Our development team employs secure coding techniques and best practices, focused around the OWASP Top Ten. Developers are formally trained in secure web application development practices upon hire and annually.

Development, testing, and production environments are separated. All changes are peer reviewed and logged for performance, audit, and forensic purposes prior to deployment into the production environment.

Asset Management

Momentive maintains an asset management policy which includes identification, classification, retention, and disposal of information and assets. Company-issued devices are equipped with full hard disk encryption and up-to-date antivirus software. Only company-issued devices are permitted to access corporate and production networks.

Incident Management

Momentive maintains a security incident response process that covers the initial response, investigation, customer notification (no less than as required by applicable law), public communication, and remediation. This process is reviewed regularly and tested bi-annually.

Breach Notification

Despite best efforts, no method of transmission over the Internet and no method of electronic storage is perfectly secure. We cannot guarantee absolute security. However, if Momentive learns of a security breach, we will notify affected users so that they can take appropriate protective steps. Our breach notification procedures are consistent with our obligations under applicable country level, state and federal laws and regulations, as well as any industry rules or standards applicable to us. We are committed to keeping our customers fully informed of any matters relevant to the security of their account and to providing customers all information necessary for them to meet their own regulatory reporting obligations.

Business Continuity Management

Backups are encrypted and stored within the production environment to preserve their confidentiality and integrity. Momentive employs a backup strategy to ensure minimum downtime and data loss. The Business Continuity Plan (BCP) is tested and updated on a regular basis to ensure its effectiveness in the event of a disaster.

Your Responsibilities

Keeping your data secure also requires that you maintain the security of your account by using sufficiently complex passwords and storing them safely. You should also ensure that you have sufficient security on your own systems. We offer TLS to secure the transmission of survey responses, but you are responsible for ensuring that your surveys are configured to use that feature where appropriate. For more information on securing your surveys, visit our Help Center.

Logging and Monitoring

Application and infrastructure systems log information to a centrally managed log repository for troubleshooting, security reviews, and analysis by authorized Momentive personnel. Logs are preserved in accordance with regulatory requirements. We will provide customers with reasonable assistance and access to logs in the event of a security incident impacting their account.

Community:

Developers

Facebook

Twitter

Linkedin

Our Blog

Instagram

Youtube

About Us:

Leadership Team

Board of Directors

Investor Relations

App Directory

Newsroom

Office Locations

Imprint

Careers

Sitemap

Help

Log In

Sign Up

Policies:

Terms of Use

Privacy Notice

California Privacy Notice

Acceptable Uses Policy

Security Statement

GDPR Compliance

Email Opt-In

Accessibility

Cookies Notice

Use Cases:

Online Polls

Facebook Surveys

Survey Template

Scheduling Polls

Google Forms vs. SurveyMonkey

Employee Satisfaction Surveys

Free Survey Templates

Mobile Surveys

How to Improve Customer Service

AB Test Significance Calculator

NPS Calculator

Questionnaire Templates

Event Survey

Sample Size Calculator

Writing Good Surveys

Likert Scale

Survey Analysis

360 Degree Feedback

Education Surveys

Survey Questions

NPS Calculation

Customer Satisfaction Survey Questions

Agree Disagree Questions

Create a Survey

Online Quizzes

Qualitative vs Quantitative Research

Customer Survey

Market Research Surveys

NPS Survey

Survey Design Best Practices

Margin of Error Calculator

Questionnaire

Demographic Questions

Training Survey

Offline Survey

360 Review Template


English
SurveyMonkey is brought to you by momentive.ai. Shape what's next with AI‑driven insights and experience management solutions built for the pace of modern business.
Copyright © 1999-2023 Momentive
BBB credentials logo
TrustedSite logo