Security & Compliance

Core Protections

Security Pillars

Multi-layered protection across infrastructure, data, and access control.

🔐

Data Encryption

All data in transit uses TLS 1.3 encryption. Data at rest is encrypted using AES-256. Encryption keys are managed securely and rotated regularly.

🛡️

Access Control

Role-based access control (RBAC) ensures users only access data they're Authorised to view. Multi-factor authentication (MFA) available for all accounts.

🔍

Monitoring & Logging

Continuous security monitoring, intrusion detection, and comprehensive audit logging. All access and changes are tracked and reviewed regularly.

Report a Security Issue

If you discover a security vulnerability or have concerns about data protection, please contact our security team immediately.

security@signalyn.io

We take all security reports seriously and will respond within 24 hours.

Regulatory Standards

Compliance Framework

Signalyn meets and exceeds industry standards for data protection and privacy.

✓

UK GDPR Compliant

Full compliance with UK General Data Protection Regulation including data subject rights, lawful processing bases, and data protection impact assessments.

✓

SOC 2 Type II

Independently audited controls covering security, availability, processing integrity, confidentiality, and privacy of customer data.

✓

ISO 27001 Certified

Information security management system certified to international standards. Regular audits ensure ongoing compliance and continuous improvement.

✓

Data Processing Agreement

Standard Data Processing Agreements (DPA) available for all customers. Covers data processing obligations, sub-processor management, and data subject rights.

✓

Regular Security Audits

Annual third-party penetration testing and vulnerability assessments. Security patches applied immediately upon discovery.

✓

Incident Response Plan

Documented incident response procedures with 24/7 monitoring. Customers notified immediately of any security incidents affecting their data.

Technical Safeguards

Data Protection Features

Advanced technical controls to protect your sensitive business information.

End-to-End Encryption

Data encrypted during transmission and at rest. Encryption keys stored separately from data with secure key management practices.

Secure API Authentication

OAuth 2.0 and JWT-based authentication. API keys and tokens stored securely with automatic rotation capabilities.

Network Security

DDoS protection, Web Application Firewall (WAF), and intrusion prevention systems. Regular security updates and patches applied automatically.

Backup & Disaster Recovery

Automated daily backups stored in geographically distributed locations. Recovery time objective (RTO) of less than 4 hours.

Access Logging & Auditing

All user access logged with timestamps and IP addresses. Audit trails retained for minimum 90 days and available on request.

Data Retention & Deletion

Clear data retention policies. Secure deletion procedures ensure data cannot be recovered. Deletion certificates provided upon request.

Organisational Measures

Security Operations

Comprehensive Organisational practices and policies to maintain security.

✓

Employee Training

All staff complete mandatory security and data protection training. Regular updates on emerging threats and best practices.

✓

Background Checks

All team members undergo background verification. Access to production systems limited to Authorised personnel only.

✓

Vendor Management

Third-party vendors and sub-processors vetted for security compliance. Data Processing Agreements in place with all vendors.

✓

Security Policies

Comprehensive security policies covering acceptable use, password management, device security, and incident response procedures.

Questions or Concerns

Get in Touch

Our security and compliance team is available to discuss your requirements and answer any questions.

For security issues: security@signalyn.io

For general inquiries: info@signalyn.io

We're committed to maintaining the highest standards of security and transparency. Your trust is paramount.