1. Our Commitment to Security
At Raqib, security is fundamental. We protect your organization’s data and your employees’ privacy through a combination of infrastructure, controls, and monitoring.
2. Data Hosting
- Hosted in [AWS/GCP/Azure] data centers (ISO 27001 certified)
- Region-specific storage available (EU, US, MENA)
3. Application Security
- TLS 1.3 encryption on all traffic
- 2FA for all admin logins
- Role-based access control
- Secure-by-default dev lifecycle (code reviews, static analysis)
4. Network Security
- Firewalled microservices architecture
- Rate limiting and DDoS mitigation
- VPN-enforced backend access
- Regular vulnerability scanning (OWASP top 10)
5. Incident Response
We monitor 24/7 and have an internal security incident response plan:
- Triage and assess within 2 hours
- Notify affected customers within 72 hours of confirmed breach
- Full postmortem transparency
6. Employee Training
All Raqib staff are:
- Background-checked
- Trained on internal security and privacy
- Granted least-privilege access based on job role
7. Compliance
We currently comply with:
- GDPR
- SOC 2 Type I (Type II pending Q4 2025)
- ISO 27001 alignment