ISO 27001 certified
Information security management system audited annually. Certificate available on request.
Built for regulated industries.
KlindrOS handles marketing data for banks, telcos, and public companies. Security and compliance are not features we add. They are baseline.
[01] CERTIFICATIONS
Independent verification.
SOC 2 Type II in progress
Type I completed Q4 2025. Type II audit window closes Q3 2026. Bridge letter available for procurement reviews.
OJK and BI alignment
Architecture and audit trail aligned with OJK and Bank Indonesia requirements for financial services customers. RBAC and change history meet regulatory review standards.
[02] DATA RESIDENCY
Where your data lives.
Default data residency is Singapore for regional Southeast Asia customers and Jakarta for Indonesian customers. Enterprise contracts can specify custom residency including on-premise deployment.
[03] ENCRYPTION
Encrypted end to end.
In transit
TLS 1.3 for all API calls and user sessions. HSTS enforced.
At rest
AES-256 encryption for all stored data. Encryption keys managed through AWS KMS with per-tenant isolation on Enterprise plans.
[04] ACCESS CONTROL
RBAC built in from day one.
- Five default roles. Custom roles on Enterprise.
- SSO via SAML 2.0 and OpenID Connect.
- Multi-factor authentication required for all admin roles.
- Quarterly access review reports generated automatically.
[05] AUDIT TRAIL
Every action is logged.
Every Media Command action, configuration change, and access event is logged with timestamp, user, and before-after state. Logs are immutable and exportable to your SIEM.
[06] INCIDENT RESPONSE
When something goes wrong.
Status page at status.cirrus-hub.net. Incidents are disclosed within four hours of confirmation. Post-mortem report published within five business days.
// KSCORE LITE
Check your business's Digital Maturity score — FREE in 60 seconds
Powered by KlindrOS — digital intelligence platform for modern enterprises.
No registration · Result emailed to you · 100% free