SAFEGUARD YOUR CUSTOMERS AND YOUR BUSINESS

Data Security

Encrypting data at rest is a fundamental design characteristic of the Attributy Cloud. We secure cloud traffic using TLS encryption and protect customer data via the 256-bit Advanced Encryption Standard (AES) algorithm. Additional technical controls protect against insider threats and data exfiltration; access to customer data is logged and monitored.

Application Security

Application security testing occurs throughout the lifecycle. During development, code is continually tested and reviewed using commercial and in-house automated toolsets, dynamic code analysis and third-party vulnerability assessments. We also engage a third party to conduct regular penetration testing, ensuring Attributy Cloud always maintains a high security posture.

Development Lifecycle Security

Security is embedded in the software development lifecycle at Attributy. An independent product security team uses an agile development process that incorporates security early in the lifecycle, with multiple validation steps. Developers are regularly trained on web application security protocols, including the Security Project (OWASP) and SANS Top 25 common vulnerabilities.

Protect Your Customers’ Data

Don’t let a security breach break consumer trust. Our commitment to data privacy will give your customers peace of mind. Amazon Web Services (AWS), trusted by well-known global customers for its robust cloud security, provides the solid infrastructure for our secure cloud solution. The Attributy Cloud uses logical isolation to enforce strict control of data requests and access permissions. You can reassure your customers their personal information is safe with you.

Count On Us

Trust is earned, not simply given. And once earned, it has to be maintained. At Attributy, we work hard to provide a consistent level of world-class service for our customers. As your partner, we will be with you every step on the way and always strive to maintain your trust through our deep commitment to security and transparency.

Compliance

ATTRIBUTY UNDERSTANDS THE CUSTOMERS’ CONCERNS ABOUT COMPLIANCE AND HAS DILIGENTLY BUILT PROCESSES TO MAKE OUR SERVICE COMPLIANT WITH THE STANDARDS, WHICH MAY GOVERN YOUR BUSINESS.

The failure to adhere to information security standards is a risk no company should ever take. It may result in a range of costly penalties from civil fines to prosecution in criminal court. In some of the most extreme cases, the officers of a company that is non-compliant may even face prison time.
At Attributy, we understand the serious ramifications of non-compliance and have diligently built processes to make our service compliant with the standards that may govern your business.

Please contact our security team (via email [email protected]) to access our policies, procedure, audits and assessments.

Attributy is compliant with the following:

  • SOC 2 Type 2
  • ISO 27001
  • Attributy solutions are HIPAA compliant
  • GDPR (General Data Protection Regulations)

 

ATTRIBUTY, Inc. is a Delaware corporation. Last updated: January 2021