ISO 27001 Certified and SOC 2 Type II Compliant
Last updated: 3 June 2025
At RadarRadar, information security is core to our mission. As a trusted enterprise technology provider, we are committed to protecting the data entrusted to us by customers, partners, and employees.
Our security framework is designed to meet the highest standards of confidentiality, integrity, and availability. It aligns with global best practices and is validated by independent third-party audits.
Certifications & Independent Audits
ISO/IEC 27001:2022 Certification
We maintain ISO/IEC 27001:2022 certification, the international standard for information security management systems (ISMS). This certification demonstrates our systematic approach to managing sensitive company and customer data.
SOC 2 Type II Compliance
We are SOC 2 Type II compliant, based on an independent audit. The SOC 2 Type II report evaluates the operational effectiveness of our controls over a defined period, based on the Trust Services Criteria for:
- Security
- Availability
- Confidentiality
A copy of our most recent SOC 2 Type II report is available upon request.
Information Security Controls
Secure Communication & Data Exchange
We enforce policies and technical safeguards to ensure the secure transmission of data within our systems and between third parties.
- Transport Protection: All data in transit is protected using industry-standard encryption protocols.
- Secure Messaging: Internal and external communications containing sensitive information are protected through secure email gateways, encryption, and access controls.
- Third-Party Data Sharing: Contracts with service providers and partners include strict requirements for secure data handling and transport.
Confidentiality Management
- Non-Disclosure Agreements (NDAs): We require NDAs for employees, contractors, and partners who access sensitive information.
- Access Controls: Data access is granted on a need-to-know basis and enforced through role-based access, multifactor authentication (MFA), and audit logs.
Compliance with Legal & Regulatory Obligations
We are committed to complying with applicable data protection and privacy laws in the jurisdictions in which we operate.
- Data Protection & Privacy: We implement processes to ensure compliance with global data privacy regulations, including GDPR.
- Data Subject Rights: We support lawful data subject rights, including access, correction, deletion, and portability, in accordance with applicable legislation.
- Contractual Compliance: We fulfill all contractual information security obligations and proactively monitor changes in the regulatory environment.
Continuous Improvement & Risk Management
We operate a continuous improvement cycle to monitor, evaluate, and strengthen our security posture.
- Risk Assessments: Regular risk assessments are conducted to identify and mitigate emerging threats.
- Security Awareness Training: All personnel undergo mandatory security training upon hire and annually thereafter.
- Incident Response: We maintain a documented and tested incident response plan to ensure timely investigation and remediation of security events.
Contact & Requests
For more information about our security and compliance practices, or to request audit reports and certifications:
Email: security@radarradar.com