We take security compliance seriously
Enterprise-grade security
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/664efec184d938789f245f98_cropped_image%20(1).png)
Thomas Ravenel
Head of Engineering @ Ondorse
Company security
100% of employees follow continuous security training and policies; enforced and monitored by Vanta
SOC type II certified
GDPR compliant
ISO 27001 certified
Strong authentication for Ondorse employees requiring MFA
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b21058c2554cc907898f4_logo-aicpa.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b21050687acfa75ea0ac3_logo-iso.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b2105d4558e256d99e529_logo-rgpd.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b210582ce01e0292a8e1e_logo-Security-4.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b21052f0ef3417e14543f_logo-aws.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b21058221d6d20cfa1a5d_logo-Security-6.webp)
System security
All data encrypted in transit (TLS 1.2) and at rest (AES-256)
Infrastructure hosted on AWS in Europe (ISO 27001, SOC1 and SOC2 certified)
Data encryption in transit using TLS 1.2+
Data encrypted at rest using AES 256-bit encryption algorithm
Business continuity plan including disaster recovery and data backups
Application security
Single Sign-On (“SSO”)
Control user and API keys access
Immutable audit trail to capture user interactions
Role-based access control
Constant vulnerability scanning and regular penetration testing
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b210533d5e27e81478051_logo-Security-7.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b2105b97cc609cd95c1ae_logo-Security-8.webp)
![](https://cdn.prod.website-files.com/6627679db0a523194054f8a7/663b210568ec0804b04a87be_logo-Security-9.webp)