DhakaBrain Trust Center

Security isn't an afterthought; it's our foundation. Discover the measures we take to protect your data and ensure the reliability of our platform.

Compliance Overview

We are compliant with GDPR regulations for data protection and privacy.

Status: Ready

We are actively working towards our SOC 2 Type 2 certification.

Status: In Progress (Target Q2 2026)

All network traffic is encrypted in transit using TLS 1.3.
All sensitive data, including API keys, is encrypted at rest using AES-256.
Our infrastructure is hosted on world-class cloud providers compliant with SOC 2 and ISO 27001.
Network access is restricted by firewalls, and services run in isolated environments.

Robust tenant and organization isolation ensures your data is never mixed with others.
Granular, role-based access control (RBAC) allows you to define who can see and do what.
Authentication is handled via secure JWTs for users and hashed API keys for automated processes.

We follow secure software development lifecycle (SDLC) practices.
We have an incident response plan in place to address potential security events.
All employee and contractor access is based on the principle of least privilege.