At ISMS Copilot, we prioritize the security of your personal data within our application. It covers your account data, such as your email or name provided when signing up. Here are technical and organization measures that ensure your account data is protected:

Security Measures

1. Encryption and Secure Communication:

• Data in Transit: We use SSL/TLS encryption to secure data as it travels between your device and our application, preventing unauthorized interception.
• Data at Rest: Our application benefits from AWS's AES-256 encryption, safeguarding stored data from unauthorized access.

2. Access Controls:

• Two-Factor Authentication (2FA): All users are required to use 2FA, adding an extra layer of security to account access.
• Admin Access: We apply the principle of least privilege, ensuring admins have only the necessary access to perform their duties.

3. User Empowerment:

• Account Management: You have the ability to delete your account independently, giving you control over your personal data.

4. Continuous Monitoring and Assessment:

• Security Monitoring: We continuously monitor our application for any security misconfigurations or vulnerabilities, with regular interventions to address any issues.
• Regular Assessments: We conduct ongoing security assessments to ensure our application remains secure against emerging threats.

Infrastructure Security

Our application is hosted on AWS, which provides robust infrastructure security, including network firewalls and DDoS protection, further enhancing the security of our application.

Commitment to Security

We are committed to maintaining a secure environment for your data and continuously improving our security measures. If you have any questions or need more information, please contact us using the contact form in the Trust Center.