Your security responsibilities as a DISCO user

At DISCO, we strive to provide our users with the highest level of security. Although we do everything we can to make sure that the DISCO ecosystem is secure, security on any cloud-based software must be a responsibility shared between the service provider (us) and the users (you). Security is a shared responsibility because, without your help, nothing we can do solely on our end can make your account 100% secure.

Think about it like this -- the landlord in your apartment building installed steel doors and the best deadbolts money could buy, but if you were to start leaving your door propped open, or handing out copies of your keys to strangers, it would not be very secure.

Similarly, if you were to start posting the password to your DISCO online, or sharing your DISCO account with another user, you would be putting your account at risk, and failing to uphold your shared responsibility. We ask that you always be vigilant with your DISCO by adhering to your security responsibilities as a DISCO user, listed below:

You are responsible for:

• not sharing your DISCO user ID and/or password
• who you invite to be a user on your DISCO
• verifying that their level of access is appropriate and commensurate with their job responsibilities
• terminating the user accounts of any individuals you wish to no longer have access to your DISCO
• requesting that multi-factor authentication be enabled and approving or denying requests to reset multi-factor authentication
• maintaining the security of the email account you use for your DISCO user account, as unauthorized access to your email account could be used to facilitate unauthorized access to your DISCO account
• reporting any known or suspected security incidents to us
• reaching out to DISCO using the authorized and proper support channels
• ensuring that your team only shares content with the appropriate parties
• establishing controls to validate that only authorized and valid data is uploaded to DISCO by your team
• contacting us if you wish to enable a setting that requires any new passwords used on your DISCO to be of higher strength
• maintaining the security of the devices you use to access DISCO, which includes the installation and maintenance of both antivirus software and security patches

If you have any questions about any of these responsibilities, please contact our Support team via chat or email.