RingCentral: Secure Cloud Communications and Collaboration

Of the many questions companies have when considering a move to the cloud, security undoubtedly sits at the top of the list. In particular, the sensitive nature of business communication—with employees and with customers—is a critical focus for security teams. After all, each day companies use phones, text, online meetings, fax, email, and other forms of communication to share strategies and secrets that define their competitive advantage.

In today’s world, security is a high priority for companies to protect their data. As a UCaaS provider, RingCentral understands the security implications of the cloud model. We make security a priority to not only protect our own operations, but to secure our customer data, as well. Our cloud services are designed to deliver world-class security greater than many traditional on-premises solutions. As a RingCentral customer, you benefit from all the best practices built into RingCentral’s policies, architecture, and operational processes, which are designed to satisfy the requirements of our most security-sensitive customers. This white paper provides insight into the security and trust built into our products and services.

Security Team and Organizational Security

At RingCentral, security begins with our culture. Security and customer trust are core business values, and we build these into our services as well as invest in dedicated security

As part of our organizational structure, RingCentral has a dedicated security department, with security engineering, security audit/compliance, application security, security data science, and service abuse functions that report to the company’s Chief Security Officer (CSO).

In addition, RingCentral conducts employee background checks, delivers security awareness training to new hires and current employees, and requires employees to acknowledge company policies each year, including our robust security policy.

All RingCentral employees receive in-depth training on data protection and confidentiality, as well as information security. This type of security training is mandatory and occurs at least annually. All employees must acknowledge and sign a data protection and confidentiality agreement. All employees also receive a certificate of completion following training and assessment.