Security is the default, not an add-on.
We hold our own practice to the standard we bring to client work. Here is how we protect information, and how to report an issue.
Our approach
Security is designed in from the first architecture decision — zero-trust by default, identity-first access, and continuous monitoring. We assume breach and engineer to contain it.
Data protection
- Encryption in transit (TLS 1.2+) and at rest.
- Least-privilege access with multi-factor authentication.
- Centralised logging, alerting, and audit trails.
- Regular patching and vulnerability management.
Compliance
We operate within HIPAA, SOC 2, PCI-DSS, and ISO 27001 regimes for client engagements, and keep our own internal practice ISO 27001-aligned.
Reporting a vulnerability
We welcome responsible disclosure. If you believe you have found a security issue affecting ParityFox, email security@parityfox.com with details and steps to reproduce. We will acknowledge within one business day and keep you informed through resolution.
Contact
For security questions or due-diligence requests, write to security@parityfox.com.