Security policy

Protecting your insurance information like it is our own

In today’s digital landscape, protecting sensitive information from potential threats and data breaches is of paramount importance. At Axe, we take data security seriously and recognize the risks involved in the handling of insurance information. Our comprehensive solution employs a range of security measures to protect your data, including front-end protection, penetration tests, and data encryption to ensure that your information remains secure both in transit and at rest. We adhere to the highest compliance standards, continuously monitoring and assessing our systems for vulnerabilities to mitigate risks effectively.

 

Front end protection

  • Bot protection
  • Geo-fencing
  • Rate limiting
  • DDoS protection

 

Certifications

  • PCI DSS
  • SOC 2 Type II

 

Application

  • User-authenticated and RBAC controlled
  • User experience monitoring
  • Manual and automated vulnerability assessment

 

Technical

  • AES-256 encryption in transit and at rest
  • Real-time vulnerability and IDS/IPS

 

Staff

  • Routine security training
  • Background checks
  • Cybersecurity alert notifications

 

Process

  • Tailored business continuity and disaster recovery management
  • Comprehensive backup program

 

Tests

  • Continuous Vulnerability Scanning
  • Continuous Asset discovery
  • Configuration monitoring
  • Application pen tests
  • AWS Security Configuration Review
  • Internal Network Pentests

 

Other

  • APRA approved
  • Data Sovereignty compliant
  • Strict privacy controls
  • Secure partners