See Nutshell in action!
Try Nutshell free for 14 days or let us show you around before you dive in.
Every day, thousands of businesses trust Nutshell to safely and reliably store important information. We partner with the industry’s most trusted infrastructure provider, Amazon Web Services (AWS), to store and secure your CRM data.Â
At Nutshell, we take the security and reliability of your data seriously. Visit our Trust Center for more information.
 
                                                     
                                                                     
                                                                     
                                                                     
                                                                    We use bank-grade, 256-bit TLS 1.2 encryption every time you access your Nutshell account, whether it’s via the web or our mobile applications. And your data is encrypted at rest in our databases, ensuring it’s protected at all times.


All data is immediately replicated to multiple servers, and we take twice-daily, weekly, and monthly snapshots of the data for backup purposes. Third-party monitoring services immediately page our team if an issue is detected. In addition, you can visit status.nutshell.com to see live Nutshell availability updates.
We use a PCI-compliant provider to securely store your billing and financial information. Information related to your credit card is not stored on our servers, adding an additional layer of protection for your financial data.


Passwords are encrypted one way and cannot be accessed by Nutshell staff. That means that only you have access to your unique password and that no one else can log into your account unless you share your password with them.
Nutshell also supports SAML-based single sign-on (SSO) and directory sync (DS) for increased password protection, available to Sales Enterprise customers. Learn more.
We successfully completed a Cloud Application Security Assessment (CASA) assessment for our web application, validating that we meet the security requirements set out by the App Defense Alliance (ADA).
The requirements include alignment with industry-leading security frameworks and a lack of findings linked to common weakness enumerations (CWEs) with high or medium risk of exploitation.

Try Nutshell free for 14 days or let us show you around before you dive in.
 
                Looking for more detailed information about how Nutshell keeps your business and customer data safe? If you’re on your company’s data or cybersecurity team, a network administrator, or a CRM manager, the following Nutshell data security information may be helpful to you.
 
								Our engineering team has experience managing petabytes of data securely and durably. We take the following steps to keep your data secure at rest and as it transits networks.
 
								Our support team is based in-house with our Ann Arbor engineering team. We will only access your account with your permission to troubleshoot support issues. Staff will never ask for your Nutshell password.
 
								We ensure that any credit card and billing information related to your Nutshell account is stored securely. Our billing provider is PCI-compliant and managed separately from Nutshell application systems.
 
								Nutshell uses one-way hashing to securely store a representation of your password. We cannot retrieve your password for you—you must use our forgotten password tool in conjunction with your email address to recover your password. As a result, it’s important to note that keeping your Nutshell email address information up-to-date is your responsibility.
The onus of choosing secure passwords also lies in your hands to ensure your passwords are kept safe and that access to your account is protected. Nutshell can’t be held responsible for compromised data due to an insecure or stolen user password. If you make use of third-party authentication, such as through Google Apps, those passwords will also need to be secured.
Nutshell also supports SAML-based SSO and DS for Sales Enterprise customers, enabling your team to log into Nutshell with one set of credentials managed by your IT team. Learn more about SSO and DS in Nutshell.
 
								If you’re a security researcher or you believe you’ve encountered a problem in Nutshell’s security, we urge you to review the following notes:
 
  
                Have a question? Need to see more? Register for a free 30-minute Nutshell demo and product tour with one of our team members to determine if Nutshell is a match for your business.
Take our guided tour to explore Nutshell’s incredible features!
 
                Data security describes a process that involves several components and actions to keep your CRM data secure and private. The process protects data against unauthorized third-party access, malicious cyber attacks, and the exploitation of your contact, business, and financial data.
CRM data security is essential for several reasons, one of which is that any organization that stores and processes private and sensitive customer data is legally obligated to protect it from unauthorized access or loss. Effective CRM cybersecurity ensures your contact data and business information stay safe and secure.
There are several security components your CRM provider should provide, including (but not limited to):
We’ve received disclosures from many individuals and organizations to make Nutshell a more secure place.
From email integration and contact management to sales automation and reporting, it has everything I need to streamline my workflow and improve productivity. I particularly appreciate the seamless integration with other tools and platforms I use daily, such as Google Workspace and Microsoft Office, which further enhances its versatility and usefulness.
Roger S. – EarthWorks Erosion Services
 
            Join 30,000+ other sales and marketing professionals. Subscribe to our Sell to Win newsletter!