Sicherheit auf Enterprise-Niveau

Compliance

SOC 2 Type II. HIPAA. DSGVO. In die Plattformschicht integriert.

• SOC 2 Type II — SOC 2 Type II
• HIPAA — HIPAA
• GDPR — DSGVO
• Audit trail — every action logged, every access recorded, exportable for compliance review

security.complianceCode.title

security.complianceCode.lead

security.complianceCode.decorator

• security.complianceCode.item1.label — security.complianceCode.item1.desc
• security.complianceCode.item2.label — security.complianceCode.item2.desc
• security.complianceCode.item3.label — security.complianceCode.item3.desc

Authentifizierung und Zugriffskontrolle

Enterprise-Identität, Zero-Trust-Zugriff. Jede Anfrage authentifiziert, jede Aktion autorisiert.

• SAML 2.0 SSO — SAML 2.0 SSO
• OAuth 2.0 / OIDC — OAuth 2.0 / OIDC
• Multi-factor authentication — TOTP and WebAuthn support
• Role-based access control — fine-grained permissions across platform and tenant boundaries

Datenschutz

Die Daten Ihrer Mandanten überschreiten nie Grenzen. Verschlüsselung überall, Isolation by Design.

• AES-256 — AES-256 im Ruhezustand
• TLS 1.3 — TLS 1.3 im Transit
• Tenant isolation — schema-level, database-level, or fully dedicated infrastructure
• Key management — AWS KMS integration, customer-managed keys available on Enterprise

Infrastruktur

Gebaut auf gehärteter Cloud-Infrastruktur mit Redundanz und kontinuierlichem Monitoring.

• 99.99% uptime SLA — backed by financial credits, not just promises
• Automated backups — point-in-time recovery with configurable retention
• Disaster recovery — cross-region failover with tested runbooks
• DDoS protection — always-on network-layer and application-layer mitigation
• Vulnerability scanning — continuous automated scanning with SLA-driven remediation
• BYOC / Hosted deployment — run on our managed cloud or bring your own — deploy to your AWS, GCP, or Azure account for full data sovereignty

Vertrauensressourcen

Wir glauben an Transparenz. Fordern Sie unsere Sicherheitsdokumentation an.