Security and Privacy have always been our top priority, we continually evolve and mature our security processes, policies and controls. Privacy & Security By Design underpins our decision making. Beonic maintains compliance with global legislative and regulatory privacy standards. We strongly believe in the responsible and ethical use of data and AI.
Beonic holds an ISO/IEC 27001:2017 certification. Complying with this standard ensures that Beonic has an independently audited security framework and is dedicated to having a best practice Information Security Management System (ISMS). In addition, we only use SOC 1,2,3 compliant data centers for hosting.
People & Awareness
Beonic maintains an innovative and industry leading approach to ongoing cyber security culture, education, and awareness to continue to influence positive behavior and a security first mindset amongst our people.
The Beonic platform is a multi-tenant SaaS solution. Beonic employs several measures to protect customer data in a multi-tenant environment. Tenant isolation is enabled through logical separation and controls at each architectural layer.
The Beonic IO platform is designed for high availability and uninterrupted uptime. The platform is enterprise scale and processes millions of events per hour without degradation of performance.
Beonic supports data subject deletion requests for both the data we control and the data that we process. Beonic acknowledges and respects individuals' privacy rights and has a framework in place to enable them.
Beonic uses industry standard network protection solutions and procedures including network segregation, Firewalls and Advanced Endpoint Detection and Response solutions (EDR). Ongoing network scans and reviews are conducted to identify vulnerabilities across our network.
Application security architecture and design standards and principles are practiced for designing, building, and implementing Beonic systems. Automated and manual security reviews are conducted continuously to identify vulnerabilities and ensure secure development practices.
Our products are centered around consumers and hence privacy enabling features are embedded by design. A data processing agreement that outlines the obligations is available on our website. This includes obligations related to the GDPR, Standards Contractual Clauses and the California consumer privacy act as well as other applicable laws.
In transit and at rest, all customer data is encrypted using the highest industry standards such as TLS and AES. All data is administered through authentication and authorization mechanisms that give our customers the flexibility to control who has access to what. Single-Sign-On (SSO) protocols such as SAML and OAuth2 are supported.
Have a question?
Contact us through our trust center or use the contact us form below to get in touch.