mysoc.ai operates an AI-powered security operations platform, and protecting our customers' data is our highest priority. The practices below summarize how we secure the Services. For specifics about a particular certification, control, or contractual commitment, please contact us.
Encryption
Data is encrypted in transit using TLS and encrypted at rest using industry-standard algorithms.
Access Control
Role-based access control and least-privilege principles limit who can access systems and customer data. Administrative access requires strong authentication.
Monitoring & Logging
We continuously monitor our infrastructure and maintain audit logs to detect and respond to suspicious activity.
Secure Infrastructure
The Services run on reputable cloud providers with hardened configurations, network isolation, and regular patching.
Data Protection
Customer data is logically segregated, and access is restricted to authorized personnel for the purpose of operating the Services.
Vulnerability Management
We perform ongoing assessments and remediate identified vulnerabilities based on severity and risk.
Responsible Disclosure
We welcome reports from security researchers. If you believe you have found a vulnerability in our Services, please email security@mysoc.ai with steps to reproduce. Please give us a reasonable opportunity to investigate and remediate before public disclosure, and do not access or modify data that does not belong to you. We appreciate your help in keeping mysoc.ai and our customers safe.