Risk analysis
Discover
Because safety & security go hand in hand
Our security engagement
We know your EHS data is not just precious, but also highly confidential. That’s why we take security so seriously. Secure from the ground up, CONFORMiT is unlike any other Operational Risk Software. We hold ourselves to the highest standards when it comes to network and cybersecurity. We work hard to obtain our own certifications, rather than coasting on the coat tails of third-party hosts and their certifications.
Certifications
Not only do we implement industry best practices when it
comes to security, but we make sure that we implement them
correctly by putting ourselves through the relevant
certification and auditing process. Here are our current
certifications and attestations:
ISO27001
Request access to certificate
SOC 2 Type II
Request access to documents
ISO27017
Request access to certificate
Data security
Your data is as important to us, as it is to you.
We rigorously implement industry best practices to ensure the safety of your data.
Data is hosted on Amazon Web Services (AWS) data centers according to your region.
See AWS certifications and attestations
Data at rest is encrypted (AES-256) to guarantee physical data security.
Transmitted data is encrypted (TLS 1.2 or higher, HSTS) to prevent anyone from hijacking your data while it is in transit.
Identity and access management
Easily control who can access your software by automating user provisioning with SCIM and limit your exposure to unwanted access.
Role based access control (RBAC)
Single Sign-On (SSO)
System for Cross-domain Identity Management (SCIM)