Skip to main content

Risk Assessment

Risk Assessment Information

1. Commitment to Information Security

2. Personal Data & Confidentiality

  • Personal Data Handling: The operator does not use customer-entered data for its own purposes.
  • Confidentiality: A non-disclosure clause is defined in the Terms of Service – Article 25.
  • All employees sign an NDA upon hiring.

3. Management of Sub-processors

  • All sub-processors sign an NDA.
  • Their security posture is monitored under ISMS requirements.

4. Service Overview & Operations

ItemDetails
Service NameSaaSus Platform
Launch Date24 Dec 2022
Service Hours24 / 7 / 365
CustomizationNot available (SaaS model). Professional Services can assist where needed.

5. Contract & Service Changes

  • Cancellation: No penalty, no advance notice required.
  • Service Changes: Material changes are announced by e-mail at least one month in advance.
  • Data Return at Contract End:
    • No obligation to return data
    • No deletion certificate issued

6. Security Measures

  • Transport Encryption: TLS (SSL/TLS) enforced
  • Health Monitoring: AWS CloudWatch
  • WAF / DDoS / Vulnerability Scans: Implemented
  • Application & Infrastructure Logs: Stored in CloudTrail for 10 years (access limited to our ops team)
  • API Access Control: Signed-request authentication prevents misuse

7. Availability & Performance

Metric / ControlValue
Uptime – Design99.95 %
Uptime – Actual99.99 %
Disaster Recovery (DR)RTO : 4 h  /  RPO : 24 h (DR tests completed)
BackupsTaken every 24 hours (generation count confidential)

8. Support & Notifications

  • Contact Channels:
    • In-console inquiry form
    • Slack Connect (available on eligible plans)
  • Incident Notifications: Sent to the registered representative e-mail address.
  • Periodic Reports: Not provided.

Corporate, Financial, and Organizational Information

These details are disclosed individually only when required for risk assessments or similar evaluations.