Trust

Security & Compliance

We practice what we preach. Piscium's platform and infrastructure are built with the same security rigor we deliver to our customers.

Certifications & Compliance

Industry-standard frameworks and certifications we align with.

SOC2 Type II

Annual SOC2 Type II audit covering security, availability, and confidentiality trust service criteria.

ISO 27001

Information security management system certified to international standards.

GDPR Compliant

Full compliance with EU General Data Protection Regulation. Data processing agreements available on request.

How we protect our platform and your data.

All data encrypted in transit (TLS 1.3) and at rest (AES-256). Encryption keys managed via hardware security modules.

Role-based access control with mandatory multi-factor authentication. Privileged access reviewed quarterly.

SAST, DAST, and SCA integrated into our CI/CD pipeline. All code reviewed before merge. Dependency updates automated.

Documented incident response plan with defined SLAs. 24/7 security monitoring and on-call rotation.

Annual third-party penetration testing with continuous internal validation using our own platform.

Our security team is happy to discuss our practices, provide compliance documentation, or answer vendor security questionnaires.