Security & Platform Details

Our clients rely on us to keep their data secure.

Our approach to security is integrated into our product design, policies, and procedures.

Reliability, scalability, trust, and security are core to our commitment to our customers. Our enterprise-grade security features and comprehensive audits ensure we're aligned with industry best practices.

Nalpeiron maintains administrative, physical, and technical safeguards designed to protect the security, confidentiality, and integrity of Customer Data.

These safeguards include, but are not limited to: (a) encryption of Customer Data in transit and at rest using industry-standard protocols including AES256 encryption and HTTPS, with key management best practices and strict user access control; (b) authentication using OAuth standard for user access and API interactions; (c) regular automated backups of Customer Data performed at least daily, with backup data stored in geographically redundant locations; (d) implementation of access controls and authentication mechanisms to prevent unauthorized access to Customer Data; (e) regular security assessments, vulnerability scanning, and penetration testing of the Service infrastructure; (f) maintenance of incident response and disaster recovery procedures; (g) employee training on data security and confidentiality obligations; and (h) monitoring and logging of system access and activities.

Industry Standard Security Certification

Nalpeiron adheres to data security, availability, and confidentiality standards developed by SOC 2.

Our team of engineers continuously monitors our infrastructure for cybersecurity events and threats, utilizing the Drata Security & Compliance Automation Platform and independent third-party testers to ensure our platform is secure and regularly tested.

We combine best practices to keep your data safe.

AWS and Azure are certified to the SOC2 and ISO 27001 standards.

Our cloud providers (AWS and Azure) comply with industry-leading security practices and frameworks, including SOC2, ISO 27001, and PCI DSS. AWS and Azure data centers are monitored 24/7 by security personnel, biometric scanning, video surveillance, and other advanced security measures.

Incident response and monitoring

Nalpeiron implements a protocol for handling security events and other operational issues, including escalation procedures, rapid mitigation, and post-mortems.

Status reporting

You can visit our status page for updates.

Build your own security

Need a different security setup? We can build what you need on your choice of hyperscaler.

With our single tenant option, you have total flexibility in your deployment's build, location, security, and structure.

Single-tenant hosting allows you to manage all your data independently from our other customers. Some organizations prefer their data to be segregated this way. It also provides additional independence—for example, if you have any concerns about Nalpeiron's ongoing viability, we include in our standard single-tenant contract the ability for you to take over that instance if any unusual circumstances were to affect our organization.

Of course, even within that single-tenant environment, you continue to benefit from our TurboScale technology, which enables your instance to scale dynamically as you add more customers, products, and end-users.