Enterprise grade security

‍

Intempt safeguards customer data using a comprehensive set of technical, operational, and organizational controls, including:

Encryption & data protection

• Application data is secured in transit using TLS and encrypted at rest with industry-standard AES-256 encryption.
  
  

Logical data isolation & access control

• Customer data is logically separated, and access is enforced through strong authentication and role-based access control (RBAC) with least-privilege principles.
  
  

Backups & resilience

• Automated encrypted backups and tested restoration procedures help ensure data durability and support recovery if needed.
  
  

Monitoring & observability

• Security logging, uptime monitoring, and system availability metrics are collected and reviewed to help detect and respond to issues quickly.
  
  

Secure software practices

• Our secure software development lifecycle (SDLC) includes security design reviews, dependency scanning, and infrastructure hardening. We leverage the OWASP Top Ten as one of many inputs into our platform security program.
  
  

Independent testing & risk assessment

• Regular penetration testing by external security experts and routine impact and risk assessments help us identify and reduce vulnerabilities.
  
  

Incident response

• Intempt maintains a formal incident response process, with defined escalation, containment, and remediation practices to handle security events effectively.
  
  

Engineering roadmap

• We actively enhance our security program, including work toward formal SOC 2 Type II compliance. While multi-factor authentication (MFA/2FA) and single sign-on (SSO) capabilities are planned future enhancements, we continually improve our controls and services to meet enterprise needs.
  
  

European Union’s General Data Protection Regulation (GDPR)

Intempt is committed to complying with the GDPR so that our customers and their end users retain appropriate protections and rights under this regulation. Customers can submit requests for data deletion or export, and configure data retention policies as needed. 

General security questions

If you have any security questions or concerns, please contact us at hey@intempt.com.