Cyberyami HRM
Features
How it works
Pricing
FAQ
Trust

Security

Last updated · 2026

Encryption

All data is encrypted in transit (TLS 1.2+) and at rest. High-sensitivity fields are additionally encrypted with AES-256-GCM before they are written to the database, and secrets are held in a dedicated secret manager — never in source.

Tenant isolation

Every organisation's data is isolated. Shared-infrastructure plans use strict row-level security keyed to your organisation; Enterprise plans can run on a fully dedicated database with its own backup and restore.

Access control

  • Role-based access with granular, per-action permissions.
  • SSO via SAML 2.0 and OIDC, plus SCIM 2.0 provisioning and de-provisioning.
  • Multi-factor authentication, with policy enforcement per role.
  • An immutable audit trail of security-relevant actions.

Compliance

We hold SOC 2 Type II and ISO 27001, and the platform is built to support GDPR and India's DPDP obligations — including data export and right-to-erasure workflows.

Reporting a vulnerability

Found a security issue? Please email support@cyberyami.com with the details and we will respond promptly.

Cyberyami HRM

Cyber resilience built for people, processes, and the platforms in between.

All systems operational
Product
  • Phishing simulations
  • Security training
  • Human risk scoring
  • Pricing
Company
  • About
  • Customers
  • Careers
  • Contact
Resources
  • Documentation
  • Changelog
  • Blog
  • Status
Legal
  • Privacy
  • Terms
  • Security
  • DPA
© 2026 Cyberyami. All rights reserved.