Security is not an afterthought at Biometrik; it is the foundation of our platform. We are committed to protecting the integrity, confidentiality, and availability of your data through rigorous security practices and compliance standards.
Aligned with ISO 27001, SOC 2 Type II, and GDPR standards.
AES-256 encryption for data at rest and TLS 1.3 for data in transit.
Hosted on AWS with VPC isolation, WAF, and DDoS protection.
Role-Based Access Control (RBAC) and Multi-Factor Authentication (MFA).
Our infrastructure is hosted on Amazon Web Services (AWS), a world-class cloud provider. We utilize AWS security features including Virtual Private Clouds (VPCs), Security Groups, and Web Application Firewalls (WAF) to isolate and protect our environments. Regular vulnerability scans and penetration testing are conducted to identify and remediate risks.
All sensitive data, including biometric templates, is encrypted ensuring that even in the unlikely event of a breach, the data remains unreadable. We enforce strict data minimization principles, collecting only what is necessary for the service.
Our development process follows secure coding guidelines (OWASP Top 10). Code reviews and static analysis are integrated into our CI/CD pipelines. We perform regular security audits of our codebase and dependencies.
We have a dedicated Incident Response Team and a comprehensive plan to handle security events. In the event of a security incident, we will notify affected customers in accordance with applicable laws and regulations.
If you believe you have found a security vulnerability in our platform, please report it to our security team at security@biometrik.in. We appreciate your responsible disclosure and will work with you to address the issue.