Needless to say, security matters. Here at Agendrix, we believe that simple compliance is not enough, which is why we hold ourselves to the highest possible standards. Our latest ISO/IEC 27001:2013 and ISO/IEC 27701:2019 certifications are proof of this.
Moreover, we ensure the day-to-day implementation of many recognized security measures company-wide. Here are a few notable examples.
Data Encryption
All Agendrix SSL certificates support 256 bit SSL encryption to ensure that all communications to and from the Agendrix application are encrypted.
Cloud Infrastructure
Agendrix runs on AWS cloud infrastructure in the ca-central-1 region. Agendrix operates a highly scalable and redundant infrastructure backed by Amazon’s 99.99% uptime service level agreements.
AWS facilities comply to the following security and data privacy standards: ISO/IEC 27001:2013, ISO/IEC 27017, ISO/IEC 27018, PCI-DSS Level 1, CSA STAR Level 1, 2 & 3, SOC 1, SOC 2, and SOC 3.
Penetration Testing and Security Audits
We perform penetration tests on a yearly basis through the services of Vumetric, an ISO 9001 certified cybersecurity services provider. Whenever issues are identified, a remediation plan is scheduled according to the criticality of these issues, including additional tests for the resolved vulnerabilities.
Payment Card Industry Obligations
All payment instrument processing is outsourced to Stripe. Stripe has been audited by a PCI-certified auditor and is certified as a PCI Service Provider Level 1.