Security

Company

We operate as a cloud-native B2B SaaS provider specializing in short-term electricity trading and management. Leveraging Azure services, we implement event-driven architecture to automate process management and execute algorithmic trading seamlessly. Our all-encompassing platform offers end-to-end solutions for trading, forecasting, and operational monitoring. Furthermore, we've developed our own IoT infrastructure in-house to ensure optimal performance and reliability.

Security infrastructure

smartPulse’s infrastructure is designed with layers of protection to help ensure your data is secure while transmitted, stored, or processed. Protections include but are not limited to encryption, least privilege access and secure software development. We use encryption-at-rest on all of our databases and more specifically, the 256-bit Advanced Encryption Standard (AES-256), with symmetric keys managed by Microsoft Azure. These data keys are themselves encrypted using a key stored in a secure keystore, and changed regularly. In terms of encryption-in-transit, we enforce HTTPS communication on all of our services and use SSL SHA-256 ECDSA Certificates running on the latest TLS 1.3.

Operational security

Our information security team continuously implements new security controls and monitors smartPulse Platform for malicious activity across our infrastructure, networks, and assets.

Product security

smartPulse provides a robust set of in product data protection and admin controls for greater visibility and control over our data. smartPulse platform can be used with SSO and track activity with the audit log features. Enterprise admins can also fine tune permission controls and manage team organizations.

Backup and Disaster Recovery

At smartPulse, we prioritize the security and continuity of your data. With our robust disaster recovery measures and geo-local redundancy, rest assured that your critical information is protected against unforeseen events. Our disaster recovery protocols ensure swift recovery and minimal downtime in the face of disruptions, while geo-local redundancy guarantees that your data is replicated across multiple geographic locations, providing an extra layer of resilience. Trust smartPulse to safeguard your data and keep your operations running smoothly, no matter what challenges arise.

Data Security

The SDLC process ensures that privacy and security considerations are integrated into every phase of our software development process. From the initial planning stages through to deployment and maintenance, we prioritize the protection of your data.

In addition to incorporating security measures into our development process, we conduct annual penetration testing to assess the strength of our systems and identify any vulnerabilities. This proactive approach allows us to address any potential security issues promptly and effectively, ensuring that your data remains safe and secure.

PRIVACY

How we handle your data

At smartPulse, our team is dedicated to developing and implementing data privacy processes and safeguards that meet industry standards and best practices. We conduct ongoing training for our teams to ensure that they are up to speed with developments in legislation and essential privacy and security practices. Every smartPulse employee and contractor signs up to non-disclosure terms to maintain the confidentiality and security of your data. smartPulse also holds any vendors that handle personal data to the same data management, security, and privacy practices and standards to which we hold ourselves.

Agreements

At smartPulse we strive to keep all of our agreements up to date with the latest regulations and industry standards. To ensure that our terms track with the GDPR and other global privacy standards we continually have our terms assessed by leading privacy experts in multiple jurisdictions.

Data governance

Data governance relates to the policies and procedures that dictate how data is procured and used throughout its life cycle. From creation and collection to processing, distribution, storage and deletion. smartPulse’s commitment to data governance is key to keeping our users data secure, private, accurate, and accessible.

Policies

We are very transparent about how we handle personal information: We do not collect, process, store or use any personal data in smartPulse Portal.

COMPLIANCE

ISO 27001:2017

ISO is an international standard development organization, and smartPulse has achieved certifications for ISO 27001:2017. The standard outline requirements for establishing, implementing, and continuously improving smartPulse’s Information Security Management System (ISMS) and Privacy Information Management System (PIMS).

GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that governs the collection of and use of personal data of EU residents, and that allows data subjects to exercise control over their data. As the GDPR is widely considered to be the most stringent global privacy standard, we have mapped our privacy program to the GDPR and other global privacy regulations.