Security & Compliance
When your clients' procurement or InfoSec teams ask about data security, you have clear answers. ISO 27001 certification, GDPR compliance, encryption, audit logging, configurable data retention, and anonymity controls—all built into the platform.
ISO 27001 Certified
Our information security management system is independently audited and certified to the ISO/IEC 27001 standard—giving your enterprise clients confidence from day one.
- Annual independent security audits
- Documented security policies and procedures
- Incident response protocols
- Employee security awareness training
GDPR & Data Protection
Data processing agreements, participant consent capture, configurable data retention, and auto-anonymisation—built into the platform, not bolted on.
- Standard data processing agreements available
- Participant privacy policy consent capture with timestamps
- Configurable data retention: auto-anonymise or auto-delete after a set period
- Soft-delete and full anonymisation services for data subject requests
Platform Security Controls
Encryption, role-based access, comprehensive audit logging, and multi-factor authentication protect data at every layer.
- Encryption at rest and in transit
- Role-based access control with 11 permission levels
- Full audit trail with PaperTrail version tracking
- Multi-factor authentication (TOTP and SMS) with role-based enforcement
See how it works for your firm
Book a personalized demo and we'll show you how all these features work together to power your 360 programmes.
