Navigating Everbridge: Your guide to informed decision-making

For over 20 years, we’ve provided critical event management services through a ready-made multi-tenant SaaS platform designed to meet the needs of customers without custom development. We designed the standardized services to meet the needs of our diverse customer base, engineering them to be secure, resilient, and scalable.  

The Everbridge Master Services Agreement (MSA) is the best way to manage your relationship with us.

Efficient purchasing: The MSA reflects our global approach to security and compliance and meets or exceeds the market standards for our industry. Using our MSA, means there is no need for either of us to incur the additional costs and delay of adapting procurement terms and associated negotiations.

Purpose-Built MSA Terms.  Our contract is purpose-built for this type of transaction, ensuring it includes all necessary provisions (e.g., platform use, security, and privacy) and nothing extraneous. 

Based on Customer Feedback. We considered prior customer negotiation “redline” requests when revising the current version of the MSA.

Industry-Leading, Fair Terms.  TermScout has certified our contract, rating it 80% Customer Favorable, which means it is more customer-favorable than 92% of the 1,500 similar contracts that they analyzed.  In their reviews, TermScout focuses on key topics such as liability, indemnification, representations and warranties, term and termination, intellectual property, and data basics. 

When it comes to personal data, you’re in control. To benefit from our core notification offerings, we only need basic business contact information, such as names, titles, business email addresses, phone numbers, and location details. You get to decide what information is used and have the flexibility to upload or remove personal data using self-service options.
For our part, we operate as a data processor, processing only as needed to provide service.

Yes, Everbridge complies with key data privacy regulations. We participate in the EU-U.S., UK, and Swiss-U.S. Data Privacy Frameworks and adhere to their principles for processing personal data. Our Data Protection Agreement includes the EU Standard Contractual Clauses, ensuring we meet GDPR requirements. Everbridge is GDPR-ready, ensuring individuals’ rights to access, deletion, data portability, and breach notification. We also comply with the Data Protection Directive 95/46/EC, the UK Data Protection Act and California Consumer Privacy Act (as amended). For more info, you can visit the privacy and security sections of the Everbridge Trust Center.

We take security seriously. Everbridge follows industry-leading standards such as ISO 27001, ISO 27701, and FedRAMP. For more info about which certifications apply to the service you receive, you can visit the privacy and security sections of Everbridge Trust Center. 

We undergo annual audits conducted by third-party accredited auditors (3PAO) and mid-year internal reviews to ensure continuous improvement. This approach helps us efficiently manage security across all customers, keeping costs down while maintaining top-tier protection. Our audited certifications include:

• ISO 27001 and ISO 27701: International information security and privacy standards 
• FedRAMP and FISMA: U.S. federal compliance 

Our Compliance and Product teams also work on new certifications and improvements to prepare for audits each year. 

Everbridge will cooperate with reasonable requests for documentary audits of our security and privacy practices.  Upon request, we provide: 

• Answers to your questions via Everbridge Trust Center and standard security questionnaires posted there. 
• Independent third-party audit certification reports via Everbridge Trust Center. 

For regulatory-driven audits, including those from EU and UK data protection authorities, we fully cooperate to provide the required information.

Our current Certificate of Insurance is available at the Everbridge Trust Center. (search for the term Insurance)