Legal
Last updated: June 1, 2026
SOC 2
Type II certified
ISO 27001
Certified
GDPR
Compliant
All data in transit is encrypted using TLS 1.3. All data at rest is encrypted using AES-256. Encryption keys are managed through a dedicated HSM-backed key management system with automatic rotation every 90 days.
Bijani Labs runs on a multi-cloud architecture spanning AWS, GCP, and Azure. Network segmentation, WAF, DDoS protection, and intrusion detection are enabled at every layer. All infrastructure is managed through infrastructure-as-code with immutable deployment patterns.
We enforce least-privilege access across all systems. Employee access to production requires hardware MFA, Just-In-Time provisioning, and is logged and audited. All access events are forwarded to our SIEM with automated anomaly detection.
Customer swarm data is logically isolated at the application layer with row-level security. Each customer’s data is encrypted with a unique data key. We never mix customer data across tenants.
We run continuous vulnerability scanning across our infrastructure and application code. Penetration tests are conducted quarterly by an independent third party. Critical vulnerabilities are patched within 24 hours.
We maintain a documented incident response plan with defined severity levels, escalation paths, and SLA commitments. Security incidents are communicated to affected customers within 24 hours of confirmation. Contact security@syntheticpulse.ai for responsible disclosure.