Your security is our top priority. We monitor our systems 24 hours a day, 7 days a week, responding immediately to potential threats. We also use advanced data encryption mechanisms and regularly update our procedures in accordance with the latest cybersecurity standards. With us, you can be sure that your data is safe.
One platform, multiple channels, unified security
TRUSTED BY HUNDREDS OF INDUSTRY LEADERS
Platform security
We apply a security by design approach, meaning that every feature of our platform is developed with data protection and the highest security standards in mind.
Secure access
We use access and identity management systems, two-factor authentication, and detailed activity logs. You have full control over who accesses what and when.
Continuous monitoring
Early warning systems allow for swift reaction to potential threats. We guarantee service continuity even in emergency situations, confirmed by our ISO 22301 certification.
Data encryption
All data transmitted within our platform is encrypted in transit. Backups are also encrypted and securely stored, ensuring confidentiality and integrity.
Cloud security
We have collaborated for many years with AWS, GCP, and Microsoft Azure. These are proven cloud service providers that meet the highest security and compliance standards. Aside from that, our infrastructure benefits from advanced security mechanisms.
- A layered security approach that covers network, application, and access control areas.
- A Web Application Firewall (WAF) shields our web application from common network attacks.
- API protection ensures each endpoint is properly secured and constantly monitored.
Data security
Your data is safe with us. We store it exclusively on servers within the European Economic Area (EEA) and protect it with encryption. We are fully compliant with the GDPR. We also use a flexible and scalable approach to risk management, regularly identifying, assessing, and monitoring potential threats.
Guaranteed service continuity
To complement our incident response procedures, we ensure uninterrupted service by preparing for emergencies and unforeseen disruptions. Our team regularly conducts business impact analyses (BIA), maintains disaster recovery (DRP) and business continuity (BCP) plans, and performs scenario-based testing to ensure operational resilience and customer protection.
The highest compliance standards
Confirms that our information security management approach follows global best practices and is regularly audited.
A standard focused on personal data protection in the cloud. Confirms we follow best practices in data privacy.
Certification confirming our readiness to maintain service continuity even in the event of major operational disruptions.
Compliance with EU regulations – NIS2 and DORA
We serve clients across the European Union and continuously strive to align with local regulatory requirements. This includes the NIS2 Directive on cybersecurity for networks and information systems, as well as the DORA regulation, which governs operational resilience in the financial sector. As a result, you can operate globally without the risk of local non-compliance.
Expert cybersecurity knowledge
FAQ
Have questions about the security of our platform? Check our FAQ section to see how we protect your data every day!
We store data exclusively on servers located within the European Economic Area.
Yes, access to our platform is secured with two-factor authentication.
Yes, our infrastructure is under continuous monitoring. Early warning mechanisms allow us to respond immediately to potential threats.
Yes. Vercom has established an internal Computer Emergency Response Team (CERT) to enhance our capabilities in managing cybersecurity threats and incidents in accordance with EU regulations such as NIS2 and DORA.
Our CERT team is responsible for receiving, analyzing, and responding to security incidents affecting our infrastructure, services, or customers. We maintain processes aligned with industry standards and regulatory expectations for operational resilience.
- You can report potential security issues directly to the CERT team at .
- To submit sensitive data, we encourage the use of our PGP public key to ensure end-to-end encryption.
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1
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uQT8
-----END PGP PUBLIC KEY BLOCK-----
We hold ISO 27001, ISO 22301, and ISO 27018 certifications. These confirm that our practices meet international standards for security, personal data protection, and business continuity.
We use contingency plans that are regularly tested and updated. Our specialists continuously analyze potential threats and prepare our platform for every possible scenario.
It’s a knowledge hub where you can find all information related to the security, compliance, and reliability of our platform. We also provide our certifications and detailed technical documentation there.
Yes, we work with Microsoft Azure, AWS, and Google Cloud Platform. These are trusted cloud service providers that meet the highest security standards.
Our security procedures are regularly tested and adjusted to evolving industry standards and emerging threats.
Yes, our platform has undergone full penetration testing conducted by a specialized external IT security firm. Additionally, we regularly perform internal penetration tests to proactively identify and eliminate potential vulnerabilities before they become threats.
At our organization, we place great importance on complying with the highest security standards and industry best practices. We use a comprehensive approach to managing vulnerabilities and incidents, which includes identification, risk assessment, prioritization, rapid response, and thorough documentation.
Have more questions?
If you have any other questions, feel free to contact us!
