Enterprise-grade security for insurance data
We understand that insurance data is among the most sensitive in any industry. Our platform is built with security at every layer to protect your data and meet regulatory requirements.
Encryption
All data is encrypted at rest (AES-256) and in transit (TLS 1.3). Database encryption ensures your policy and customer data remains protected at all times.
Access Control
Role-based access control (RBAC) with multi-factor authentication. Granular permissions ensure team members only access the data they need.
Infrastructure
Hosted on SOC 2 compliant cloud infrastructure within European data centres. Regular penetration testing and vulnerability assessments.
Compliance & Certifications
UK GDPR Compliant
Full compliance with UK data protection regulations
EU GDPR Compliant
Meets European data protection requirements for cross-border operations
FCA Aligned
Platform designed to support FCA regulatory requirements
IFRS17 Ready
Built-in compliance for international financial reporting standards
SOC 2 Infrastructure
Hosted on independently audited cloud infrastructure
ISO 27001 Aligned
Information security management practices following ISO standards
How We Handle Your Data
Data Residency
All customer data is stored within European data centres. We do not transfer data outside the EEA without explicit consent and appropriate safeguards.
Data Backup
Automated daily backups with point-in-time recovery. Backup data is encrypted and stored in geographically separate locations.
Incident Response
Documented incident response procedures with defined escalation paths. We commit to notifying affected customers within 72 hours of a confirmed data breach.
Data Deletion
Upon contract termination, all customer data is securely deleted within 90 days. Certificates of destruction are available upon request.
Audit Trails
Comprehensive audit logging of all data access and modifications. Logs are immutable and retained for regulatory compliance periods.