Enterprise-grade security
We handle sensitive identity data for millions of users. Security isn't an afterthought—it's foundational to everything we build.
Security practices & compliance
Our commitment to security standards and regulatory compliance.
ISO 27001
In progress
SOC 2 Type II
In progress
GDPR
Compliant - EU data protection
CCPA
Compliant - California privacy
AML/KYC
Compliant - 5AMLD/6AMLD regulations
How we protect your data
Industry-leading security practices at every layer of our infrastructure.
Data Encryption
All PII fields encrypted at rest with Fernet (AES-128-CBC). TLS encryption in transit. Encryption keys managed through AWS KMS.
Access Control
Role-based access controls (RBAC) with principle of least privilege. Multi-tenant isolation with row-level security.
Infrastructure Security
Hosted on AWS with VPC isolation, security groups, and WAF protection. Annual penetration testing scheduled.
Multi-Tenant Isolation
Complete data isolation between tenants. Row-level security with tenant_id enforced on all database queries.
Audit Logging
Chain-hashed, tamper-evident audit logs for all API requests and user actions. 7-year retention for compliance.
Monitoring & Alerting
24/7 security monitoring with automated threat detection and incident response. Real-time alerts for suspicious activity.
Security is in our DNA
From encryption to access controls to incident response, we've built security into every aspect of TrustGate.
- Encrypted at rest (Fernet/AES-128-CBC), TLS in transit
- Multi-tenant data isolation
- 24/7 monitoring with real-time alerting
- Annual penetration testing (scheduled)
- Role-based access controls
- Tamper-evident audit logging (7-year retention)
- GDPR data subject rights (SAR, deletion, portability)
- Data Processing Agreements (DPA) available
Responsible disclosure
We maintain an active bug bounty program. If you discover a security vulnerability, please report it responsibly.
Questions about security?
Our security team is happy to discuss our practices and answer any questions.