Subscribe to newsletter
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Account
Sign upRNA Digital Pty Ltd
Agent Cloud is committed to providing a secure and private environment for managing and interacting with your data. Built on Google Cloud Platform (GCP), our infrastructure leverages the robust security features and compliance certifications of one of the most trusted cloud providers in the world. Below, we outline the key security practices and protocols we adhere to, ensuring your data remains protected and private.
Agent Cloud can be managed by us, via our SaaS offering or it can be self hosted, catering for companies with strict security requirements.
1. Data Privacy & Ownership
Data Control: Agent Cloud offers you full control over your data, enabling both cloud-hosted and private deployment options. With Agent Cloud, you retain ownership of your data and manage access within your organization.
Ownership: Agent Cloud is built to ensure that your data remains private. We do not access, analyze, or share your data without explicit permission, maintaining our commitment to absolute data privacy.
2. Powered by Google Cloud Platform (GCP)
Infrastructure Security: GCP provides world-class security for data centers, network infrastructure, and storage, ensuring high availability and security for Agent Cloud’s services.
Compliance Certifications: GCP meets numerous global compliance standards, including SOC 2, ISO 27001, and HIPAA, helping Agent Cloud align with industry best practices and compliance requirements.
3. Data EncryptionIn-Transit
Encryption: All data transmitted to and from Agent Cloud is encrypted using TLS 1.2 or higher, protecting data from unauthorized access during transit.
At-Rest Encryption: Data is encrypted at rest within GCP’s infrastructure using AES-256 encryption, ensuring that data is secure even in the unlikely event of a physical breach.
4. Access Control & Authentication
Role-Based Access Control (RBAC): Define and manage access permissions for users within your organization based on their roles.
Multi-Factor Authentication (MFA): Agent Cloud supports multi-factor authentication to add an additional layer of security to user logins via SSO providers Google or Github.
Audit Logging: Detailed logging of all access and actions allows for full transparency, traceability, and accountability across the platform.
5. Data Segmentation
Data Segmentation: Data segmentation policies prevent unintentional data exposure across datasets and maintain strict isolation.
6. Regular Security Assessments
Penetration Testing: Routine penetration testing, both internally and through third-party experts, helps identify and mitigate potential vulnerabilities.
Vulnerability Scanning: Our platform undergoes regular vulnerability scanning to detect and address security risks promptly.
7. Compliance & Certifications
GDPR: Agent Cloud complies with the General Data Protection Regulation (GDPR) and offers features to support our clients in meeting GDPR requirements.
HIPAA: For clients managing protected health information (PHI), Agent Cloud can be configured to meet HIPAA compliance standards.
ISO Standards: By leveraging GCP’s ISO 27001 certification, Agent Cloud aligns with globally recognized information security standards.
8. Incident Response & Monitoring
Continuous Monitoring: We continuously monitor system logs and network activity to detect and respond to potential security threats.
Incident Response Plan: In the unlikely event of a data breach, our incident response team is prepared to manage and mitigate the impact while keeping you informed every step of the way.
9. Data Retention & Deletion
Customizable Retention Policies: Agent Cloud allows you to define data retention policies to suit your organization’s needs.
Data Deletion: Data can be securely deleted upon request, ensuring no residual information remains on our servers.
10. Employee Security Training
Security Awareness: Our team undergoes regular security training to stay informed of the latest cybersecurity threats, trends, and best practices.Access Control: Access to sensitive information is restricted to authorized personnel only, following the principle of least privilege.
11. Security in Development Practices
Secure Development Lifecycle: Our development practices include secure coding standards and peer code reviews to ensure security is built into every part of the platform.
Automated Testing: Automated testing helps us catch and resolve security vulnerabilities early in the development process.