Built to protect your data, systems, and processes
We rely on rigorously and independently audited hyperscale cloud providers. Their redundant, physically secured data centers form the foundation of our shared responsibility approach to safeguarding customer data.
Our platform runs inside secure virtual private clouds, maintains a robust security program with continuous vulnerability scanning, structured code reviews, and independent third-party penetration testing.
All data is encrypted using AES-256 at rest and TLS 1.3 in transit. Encryption keys are securely managed following best practices.
Granular, role-based access management with enforced MFA and SSO integrations (Okta, Azure AD, Google Workspace) ensures least-privilege access.
Comprehensive logging, continuous monitoring, and automated anomaly and intrusion detection ensure full traceability. Regular external audits verify compliance.
Our Information Security Management System (ISMS) is ISO 27001-certified and GDPR-aligned, ensuring confidentiality, integrity, and availability.
Protecting your data at every level
Organizational Security
We operate under an ISO 27001-certified Information Security Management System (ISMS) that defines policies, roles, and responsibilities for data protection & risk control.
External audits and annual third-party penetration tests validate our compliance and ensure continuous improvement of our security posture.
All employees complete mandatory security training, sign confidentiality agreements, and undergo background checks in accordance with local laws.
Cloud Security
Ethon runs within secure virtual private cloud environments, benefiting from multi-layered physical and logical safeguards.
Systems are continuously monitored with automated alerting, vulnerability scanning, and incident response protocols to ensure timely detection and remediation.
Data is encrypted in transit (TLS 1.3+) and at rest (AES-256), with keys managed via AWS KMS. Encrypted backups and defined recovery procedures ensure business continuity in case of service disruption.
Access Security
Role-based access control is enforced across all systems. Multi-Factor Authentication (MFA) and Single Sign-On (SSO) integrations are required for all employees.
Access rights are limited to the minimum necessary and reviewed quarterly.
Strong password policies, enforced expiration, and secure session handling are standard across all applications.
Vendor & Risk Management
All vendors undergo security due diligence and data protection evaluation before onboarding, along with periodic performance and compliance reviews to maintain secure integrations.
Ethon conducts quarterly organization-wide risk assessments to identify, evaluate, and mitigate potential threats.
Encrypted backups and defined recovery procedures ensure business continuity in case of service disruption.
Deployments
Cloud, hybrid, or on-premise deployments all adhere to the same security and compliance standards.
Each customer environment is logically isolated, with dedicated data stores and encryption keys
Data is hosted in region-specific zones to comply with local data protection regulations.
