At Montara, security and privacy are our top priority. Montara is committed to keeping your data safe and secure by utilizing enterprise-grade best practices with robust policies, controls, and systems in place to protect your data and our service.
Montara is SOC 2 and ISO 27001 certified, designed to be GDPR compliant and regularly goes through stringent security audits and penetration tests to verify our system is secure and identify flaws and vulnerabilities. All data is encrypted at rest and at transit at all times.
Montara is hosted on Amazon Web Services (AWS). AWS data centers are monitored by 24×7 security, biometric scanning, video surveillance and are SOC 1, SOC 2 and SOC 3 certified.
Single Tenant Architecture
Customer raw data and data processing is isolated and uses a single-tenant architecture. Data is regularly and securely backed up.
Montara uses enterprise-grade encryption throughout. All data in transit is encrypted using TLS. Data at rest is encrypted using AES-256.
Montara uses Single-Sign-On (SSO) for service access control and data access authorization. This allows your organization to control login to the system and keep access secure.
Secure Product Development
Security is an integral part of Montara’s Software Development Life Cycle. The Montara service is regularly tested for common vulnerabilities (such as CSRF, XSS, SQL Injection) using static analysis and manual testing.
Penetration tests and security scans are performed regularly both by Montara’s team as well as by a reputable, experienced third-party vendor.
SOC 2 & ISO 27001
Montara is SOC 2 and ISO 27001 certified and has been audited by independent firms who confirmed Montara meets SOC 2 & ISO 27001 requirements.
Montara is compliant with the General Data Protection Regulation (GDPR), and can assist customers in maintaining compliance.