Trust
Security
Encryption
All data is encrypted in transit (TLS 1.2+) and at rest. High-sensitivity fields are additionally encrypted with AES-256-GCM before they are written to the database, and secrets are held in a dedicated secret manager — never in source.
Tenant isolation
Every organisation's data is isolated. Shared-infrastructure plans use strict row-level security keyed to your organisation; Enterprise plans can run on a fully dedicated database with its own backup and restore.
Access control
- Role-based access with granular, per-action permissions.
- SSO via SAML 2.0 and OIDC, plus SCIM 2.0 provisioning and de-provisioning.
- Multi-factor authentication, with policy enforcement per role.
- An immutable audit trail of security-relevant actions.
Compliance
We hold SOC 2 Type II and ISO 27001, and the platform is built to support GDPR and India's DPDP obligations — including data export and right-to-erasure workflows.
Reporting a vulnerability
Found a security issue? Please email support@cyberyami.com with the details and we will respond promptly.