Security Policy
Security is fundamental to everything we build. This policy outlines our comprehensive approach to protecting your data and systems.
Security Commitment
At Yohanun, security isn't an afterthought—it's built into every layer of our semantic runtime. We implement enterprise-grade security measures to protect your AI systems and data.
1. Data Protection
We protect your data with industry-standard encryption, both in transit (TLS 1.3) and at rest (AES-256).
Customer data is isolated at multiple levels with separate encryption keys and network segmentation.
2. Infrastructure Security
Our infrastructure is hosted on SOC 2 compliant cloud providers with multi-region deployment and VPC isolation.
We implement Web Application Firewalls, DDoS protection, and regular penetration testing.
3. Access Controls
Multi-factor authentication is required for all accounts with role-based access controls and audit trails.
We support SSO integration and API key management with rotation capabilities.
4. Monitoring & Detection
24/7 security monitoring with real-time threat detection and automated anomaly detection.
Comprehensive audit logs are maintained with immutable storage and compliance retention.
5. Incident Response
We maintain a comprehensive incident response plan with immediate containment and customer notification procedures.
Data breach notifications are provided within 72 hours as required by GDPR.
6. Compliance
We comply with GDPR, Irish Data Protection Act, and maintain ISO 27001 aligned security practices.
Enterprise customers can access Data Processing Agreements and custom security assessments.
7. Secure Development
Security is integrated into our development lifecycle with code reviews, automated testing, and dependency scanning.
Security Contact
For security inquiries or vulnerability reports:
Email: security@yohanun.com