Safe, secure, and private.
At Tendoer, we take security seriously. Protecting your data is fundamental to our mission of transforming the procurement process with intelligent solutions. Below, we outline the measures and practices we use to ensure your information remains safe and secure.
Data Security
We employ state-of-the-art security protocols to safeguard your data:
Data Encryption: All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 to ensure confidentiality.
Secure Hosting: Our infrastructure is hosted on Vercel, which complies with industry standards such as ISO 27001, SOC 2, and GDPR.
Access Controls: Role-based access control (RBAC) ensures that only authorized personnel have access to your data. Multi-factor authentication (MFA) is required for all access.
Application Security
Our application is built with security at its core:
Secure Development Practices: We follow OWASP best practices to protect against common vulnerabilities like XSS, CSRF, and SQL injection.
Penetration Testing: Regular penetration testing is conducted by independent third-party experts to identify and mitigate potential risks.
Regular Updates: Continuous monitoring and timely updates ensure that our application always runs on the latest and most secure framework versions.
Operational Security
Operational security is a cornerstone of our strategy:
Monitoring and Logging: Real-time monitoring and logging provide deep visibility into system activity to detect and respond to anomalies promptly.
Incident Response: Our incident response plan ensures swift action in the unlikely event of a security breach.
Employee Training: All team members undergo regular security training to stay up to date with the latest best practices.
Compliance
We adhere to global compliance standards to protect your data:
GDPR: Full compliance with the General Data Protection Regulation ensures your personal data is handled with care and transparency.
SOC 2: Our processes and systems align with SOC 2 standards for security, availability, and confidentiality.
Privacy by Design: Tendoer integrates privacy considerations into every stage of product development.
Your Security, Our Priority
We are committed to maintaining the highest level of security for our users. If you have any questions or concerns, or if you’d like to report a vulnerability, please contact us:
📧 security@tendoer.com
We encourage security researchers to responsibly disclose any vulnerabilities they find. Your input helps us continuously improve.