A holistic approach to security
Our dedicated Security team ensures the safety, privacy, and resilience of our community implementing robust measures at every layer:
Application Security
At the application level, PrimaryBid's security features include:
- Information Restriction: Access controls based on groups, individuals, and devices.
- Audit Trails: Full audit trails with real-time status and detailed compliance reports.
- Functionality Control: Manage application functionality, including mobile device access, through assignable roles.
- Multi-factor Authentication: Risk-based rules, data-driven authentication, and channel-driven single sign-on.
- Enhanced Login and Authentication: Utilise PrimaryBid’s Identity Services for increased protection and control.
Platform Security
PrimaryBid ensures data protection throughout its platform:
- End-to-End Encryption: Safeguard data at rest, in transit, and in use.
- GDPR Compliance: Comprehensive audit reports, distributed content node architecture, and global storage network.
- Operational Security: Geographically dispersed data centres, fault-tolerant architecture, DDoS protection, and 24x7 systems monitoring.
Operational Security
Our commitment to operational security includes:
- Infrastructure Protection: Robust controls, personnel procedures, and continual platform and application assessments.
- Employee Screening: High-level background checks, confidentiality agreements, and auditable change controls.
Data Privacy and Sovereignty
Configure PrimaryBid’s platform to meet data security requirements in any region:
- Flexible Architecture: Enable in-region data storage and processing, ensuring compliance with regional data sovereignty requirements.
- Legal Compliance: Adaptable to geo-specific regulations, including EU-US Privacy Shield and Standard Contractual Clauses.
Governance, Risk, and Compliance
PrimaryBid provides robust tools and assistance for governance and compliance:
- Compliance Logging: Track all access and controlled document changes.
- Compliance Reporting: Diverse standard and custom reporting capabilities, with flexible feeds for integration.
- Governance Extensions: Enhance and consolidate business applications under IT governance and control.
Audits and Certifications
PrimaryBid proudly holds ISO27001, ISO27017, ISO27018, SOC2 Type 1, Cyber Essentials Plus, PCI/DSS, CSA Star Level 1 certifications, having passed rigorous security audits of our source code, processes, applications, and personnel management.