Security features in Pipedrive
Pipedrive offers numerous security features to give you full transparency into how and when your data is accessed.
Permission and visibility settings
Permission sets
Users with account settings access can set up permission sets to control what other users can do in Pipedrive, such as deleting deals or editing custom fields.
You can see the full list of actions that can be controlled via permission sets in this article.
The number of visibility groups and default options you have also depends on your plan.
- Lite and Growth plans: One default group and two visibility options: the item’s owner or all users
- Premium plan: One default group plus three customizable visibility groups and four visibility options: item’s owner, item owner’s visibility group, item owner’s visibility group and sub-groups, or all users
- Ultimate plan: Unlimited number of groups and four visibility options: item’s owner, item owner’s visibility group, item owner’s visibility group and sub-groups, or all users
Visibility groups
While permission sets control what users can do in Pipedrive, visibility groups control what deals, contacts and products users can see. Creating visibility groups is useful if you want certain users to not see specific information in your company account. The number of visibility groups you have also depends on the plan you’re on.
-
Lite and Growth plans
Two visibility groups: the item’s owners and followers or the entire company -
Premium and higher plans
Four visibility groups: item’s owner only, owner’s visibility group, owner’s visibility group and sub-groups or to the entire company
Pipeline visibility
Users with account settings access can edit the pipeline visibility settings for users in the visibility groups by deselecting the pipelines that each group shouldn’t be able to see. By default, all visibility groups will have access to all pipelines.
Visibility groups that don’t have access to specific pipelines won’t be able to see any trace of the pipeline or deals inside that pipeline in Pipedrive, as the pipeline will be completely hidden from their accounts.
Users with the deals admin permission set will always have access to all pipelines and deals, regardless of the visibility group settings. Learn more about pipeline visibility in this article.
2FA: two-factor authentication
The two-factor authentication feature adds an extra layer of security to confirm that the user trying to log in to Pipedrive is actually who they say they’re. This feature can be implemented by using an authenticator app or the verification link via email.
When 2FA is enabled through email verification, logging in to Pipedrive will prompt an email to be sent to the email address you use to log in. When you log in from a web browser, the email includes a verification link. When you log in to the mobile app, you receive an email with a one-time verification code.
The authenticator app adds security, since only individuals with access to it can retrieve the verification codes needed to sign in, providing stronger protection against unauthorized access to your account.
Single sign-on (SSO)
Many large companies use a third-party SSO service, such as Okta and Azure AD, to allow users to securely authenticate and log in to multiple applications with just one set of login credentials.
Pipedrive's single sign-on feature lets you add Pipedrive to the SSO provider your company has set up, providing a stress-free Pipedrive login experience for users and a more secure way for administrators to control user access.
Security dashboard
The security dashboard feature will provide full transparency into user access information and security-related activity in your company account.
-
User access and device logs
Which users are accessing your account and any additional login information such as device, location and login time -
Audit log
A log of all of the security-related changes made in your company account by any user in the past two months -
Security assessment
A report on what Pipedrive believes are potential security vulnerabilities in your Pipedrive company account, based on current access and permission-related user settings
On Pipedrive’s Lite and Growth plans, you won’t have access to all of these features, but you’ll have a security dashboard displaying:
- Users logged in
- A brief overview of the past week
- A security assessment showing you high and low-risk issues
Security rules
With the security rules feature, users with account settings access can enforce access restrictions to ensure that business data is available only to the right people at the right time and place.
- 2FA: two-factor authentication
Enforce two-factor authentication for all users - Password rules
Enforce password-related rules such as password strength, password expiration and password reuse -
IP address and time range access
The advanced rules section of the security rules feature will allow you to limit user access by IP address and time range
Security alerts
The security alerts feature will allow users with account settings access to set up email notifications for security-related events in the company account. The alerts can be configured to send in real time or at regular daily or weekly intervals.
-
Account access alerts
An email alert is sent when any user access-related activity occurs, such as a user logging in from a new device or location. -
Data leakage and loss
Email alert sent when data is exported or deleted from Pipedrive. -
Audit log
All security alerts can be tracked in the security dashboard under the audit log.
Was this article helpful?
Yes
No