Enterprise
Grade.
Palindrome is built to the highest security standards, so your firm's data is always secure. Benefit from comprehensive security accreditations, expert advised protocols, and complete cloud based data segregation.
Globally Certified and Compliant.
We’re proud to meet the highest global standards for data security and compliance.
SOC 2 Type 2 Certified
Assessed against stringent AICPA Trust Criteria.
GDPR Compliant
Your privacy and data rights are safeguarded.
ISO 27001 Standard
Robust controls for information security management.
ISO 42001 Standard
AI specific governance, built in from the ground up.
Flexible Deployment Options.
Prefer to keep everything in house? Palindrome can be deployed within your firm’s own cloud environment maintaining our gold standard security while giving you full control.
Our Security Principles.
The standards we hold ourselves to, end to end. Every layer of Palindrome is built with these principles at the foundation.
End-to-End Encryption
All data at rest and in transit is encrypted using industry standard protocols (AES-256, TLS 1.2+). This ensures that data is always protected, even during processing or transfer.
Data Residency Compliance
All customer data is stored exclusively within regulatory compliant geographies, with enforced controls for residency and sovereign cloud preferences, ensuring firms meet local legal obligations.
Private, Non-Public Backend Architecture
Our backend services operate entirely within private, secured networks. No compute resources are exposed to the public internet only explicitly secured front end interfaces are accessible externally.
Continuous Threat Monitoring & Detection
We leverage Google Cloud’s Security Command Center for 24/7 real time monitoring, vulnerability scanning, and alerting proactively detecting anomalies, intrusions, and misconfigurations.
Customer Level Data Isolation
Each customer’s data is stored in a dedicated and logically isolated environment ensuring no cross tenant access, no shared databases, and complete customer level segregation.
Zero Trust Access Controls
Access to all systems is governed by zero trust architecture principles, with enforced MFA, least privilege roles, network level policies, and endpoint hardening across both cloud and internal devices.
