​

Compliance and Certification

​

Our Commitment to Security and Compliance

​

Current Certifications

• SOC 2 Type II: Our systems and processes have been audited against the Trust Services Criteria for security, availability, and confidentiality. This certification validates our ongoing compliance with Trust Services Criteria over time
• ISO 27001: We maintain certification for our information security management system

​

Regulatory Compliance

• Data Protection Laws: We design our systems with GDPR and other applicable data protection principles in mind
• Industry Standards: We implement security best practices based on NIST Cybersecurity Framework and OWASP security guidelines

​

Regular Security Assessments

• Bi-Annual VAPT: We conduct Vulnerability Assessment and Penetration Testing (VAPT) of our SDKs, APIs, and platform every 6 months
• Independent third-party security audits
• Data protection impact assessments

​

Security Practices

• End-to-end encryption for all data in transit and at rest
• Multi-factor authentication for system access
• Regular security training for all employees
• Comprehensive incident response procedures

​

Transparency and Documentation

• Security and privacy policies
• Data processing records
• Risk assessments
• Audit trails

​

Verification