Our clients entrust Praxonomy with some of their most valuable information, therefore ensuring your data is secure and protected at all times is one of the most crucial responsibilities we have. Praxonomy takes a broad and uncompromising approach to security and we have implemented a multi-layer defence framework to safeguard your data.
Praxonomy protects your data using sophisticated cryptographic models. Our commitment to such protection measures ensures the confidentiality and integrity of your communications, data and files.
Praxonomy protects every file and resource using a multi level encryption framework together with industry-accepted encryption algorithms and standards. Sharing and accessing of files is protected by both access control and user's unique decryption key.
Data transiting to and from Praxonomy servers is encrypted using secure SSL/TLS-protected channels. All client data at rest is secured using the Transparent Data Encryption (TDE) mechanism.
Praxonomy is designed and developed with security considerations from the ground up. Security reviews, which leverages automated code scanning tools, as well as manual reviews, are implemented as part of the software development process.
Regular penetration tests are performed on Praxonomy by independent cybersecurity experts and we ensure there are no high risk components in the codes released to the production environment. The test findings may be made available upon request.
The application enables clients to have complete control over their data. Administrators are able to manage user accounts, delegate rights and assign roles and permissions. Spaces, board packs, and files can be granted specific access privileges.
ISO 27001 is one of the most widely recognised and internationally accepted information security standards. It identifies requirements for a comprehensive Information Security Management System (ISMS) and defines how organisations should manage information securely, including applicable security controls. You can view our certificate here.
Praxonomy is hosted in highly secure, ISO 27001 certified data centres in the Netherlands. Your data is managed under widely adopted security processes and standards for commercial Information Security Management Systems.
Physical access to our data centres is protected 24x7 by advanced, multi-layered security systems which include documented security policies and procedures for access, round-the-clock onsite security officers, CCTV surveillance, motion detection as well as biometric access control card readers.
Praxonomy's infrastructure has built-in high availability, consisting of failover mechanisms in the unlikely event of hardware and component failures. Redundancy is built into all aspects of our infrastructure to ensure reliability of service and prevent data loss.
Praxonomy shares the belief that privacy is a fundamental human right, therefore we have built strong security and privacy in the very fabric of our solution. We continuously strive to achieve the highest standards.
We only collect and store information that is necessary to offer high-quality service and we only do this with your consent. Our privacy practices are detailed in our Privacy Policy.
Praxonomy is transparent about lawful data requests we receive from third parties and how we handle them. We publish transparency reports on an annual basis.
Praxonomy is fully compliant to the strict data protection laws of the European Union (GDPR) and we are committed to helping clients fulfil their relevant obligations of GDPR.
The company employs formal operating procedures, controls and well-defined roles and responsibilities over all aspects from development, testing, deployment to post-deployment monitoring to ensure continued data security and integrity. System and configuration changes can only be performed by authorised engineers under strict control measures. All Praxonomy staff are required to undergo regular IT security awareness training and adhere to company-wide IT policies.
Praxonomy appoints independent security experts to perform regular and in-depth security audits. We also employ internal processes to ensure that our security measures are properly implemented and in accordance with industry best practices.
On top of our high availability and redundant infrastructure, the system is backed up at regular intervals to ensure uninterrupted service availability.
