At Dawex, trust and security are paramount. Dawex teams aim at consistently maintaining the highest security standards to exchange data safely and easily.
Dawex has a strong focus on security which is an integral part of the organization’s corporate values. Security and confidentiality are constantly at the forefront of internal discussions, with regular updates being made, where:
Dawex maintains active System and Organization Control (SOC) 2 Type II and SOC 3 compliance, which ensures the implementation of internal controls for security, availability, processing integrity, confidentiality and privacy. These audits also assess and certify the design of security processes and controls conducted by Dawex, including criteria and controls for ensuring the security and privacy of data.
Dawex Data Exchange technology also undergoes rigorous annual external audits performed by security experts, which include comprehensive penetration tests. These audits are conducted to assess the security of the Dawex solution Data Exchange Platform and its underlying code, as well as to identify any vulnerabilities or weaknesses that may exist. By regularly conducting external audits, Dawex demonstrates its commitment to maintaining a secure platform for the users and to continuously improving security measures to stay ahead of emerging threats.
Dawex has taken significant steps to establish robust mechanisms for ensuring the security of data exchanged through its technology. These measures enable Data Exchange Platform orchestrators to create and manage a secure and trustworthy data exchange ecosystem.
The mechanisms include:
Dawex builds security through privacy-by-design, and has implemented state-of-the-art measures to ensure the protection of personal and activity-related data.
These measures include:
Dawex recognizes the critical importance of key management in ensuring the confidentiality, integrity and authenticity of data at rest and in transit.
The system includes:
The Dawex security team recognizes that no technology is entirely immune to bugs and vulnerabilities. As such, the team is committed to verifying and resolving any potential security vulnerabilities that may be discovered.
Dawex has implemented a responsible disclosure policy that encourages anyone who discovers a security issue to report it in a responsible manner. This policy ensures that the security team can promptly and effectively address any vulnerabilities, while also maintaining the confidentiality and privacy of the reporter.
Dawex believes that responsible disclosure is critical for maintaining a secure and trustworthy technology, and is committed to working collaboratively with the security community to ensure the highest levels of security for all users.