Platform Security Overview
As a SaaS platform company, our cloud platform and the infrastructure it uses are our most critical assets. Our Customers, employees and the whole company are reliant on the platform being not only available but also resilient and dependable.
Data Cente Controls
Our platform is securely hosted on Amazon Web Services (AWS), a global leader in cloud infrastructure trusted by millions worldwide. AWS maintains robust security protocols, proactively identifying risks and rigorously designing, implementing and testing controls to protect the systems, technology and data it manages.
Active Threat Monitoring
We continuously monitor our platform in real-time to promptly identify risks, vulnerabilities and threats. Our security practices blend manual audits with automated scanning to proactively detect and mitigate vulnerabilities. Regular penetration testing and vulnerability assessments are conducted against extensive, industry-recognised databases, including OWASP Top Ten and NVD (National Vulnerability Database), to ensure comprehensive protection.
Oversight
All updates, changes, and code deployments are carried out under strict oversight from a dedicated Change Advisory Board (CAB). Who ensures any change is undertaken in a secure, ethical and trustworthy way that is aligned to our company policies and protocol.
Prepared for the Unexpected
We maintain a Business Continuity Plan in case the unexpected happens. Our platform is not reliant on a single person, property, or process and has a maximum Return to Operation (RTO) time of under 24 hours.
Related Policies
Below are our related policies to platform security
