How UMBRELLA protects the confidentiality, integrity, and availability of data entrusted to us by our clients and partners.
All sensitive data is encrypted using AES-256 when stored and TLS 1.3 during transmission. We maintain strict key management practices with regular rotation schedules.
Our infrastructure is hosted on hardened cloud environments with network segmentation, intrusion detection systems, and continuous vulnerability scanning.
Role-based access controls (RBAC) enforce the principle of least privilege. Multi-factor authentication is mandatory for all administrative access.
We implement checksums and audit logging to ensure data integrity. Regular backups are encrypted and tested for recoverability.
We collect only the data necessary for our services. Retention periods are defined per data type, and secure deletion is performed when no longer needed.
A documented incident response plan is in place with defined roles, escalation paths, and communication protocols for any suspected data breach.