Security and Compliance
We strive to provide
One of the most secure and efficient API solutions on the market.
- Everything runs in the cloud, therefore we have removed the need to support on-premise infrastructure.
- We follow Microsoft Defender for Cloud best practices.
- Our cloud software vendors conform to both ISO-27001 and SOC-2.
- We are working together with our bank partners towards. becoming compliant and subsequently getting certified.
Microsoft Azure.
We host our products in the EU, in Microsoft Azure (within the EU Data Boundary), and our set-up ensures we can scale our services.
Auth0.
We use Auth0 for identity and access management, enabling us to integrate with BankID and additional identity providers in the Nordics.
Microsoft Cloud.
We follow a zero-trust approach, granting and revoking access as necessary. Access to production environments is strictly controlled and logged.
Currently working with Niche Banks in the Nordics.
Banks and Factoring companies are currently working with us and this requires us to become ISO-27001 compliant. Our road maps and internal development teams are working towards the highest standards of cybersecurity and practices.
Although we are not yet compliant, our practices are available for auditing by our partners at anytime. Security is our top priority. We are the only data service provider in the Nordics with the capabilities to streamline ERP systems and unstructured data sources like PDFs, JPGs and XML files into one unified source.
.gif "ezgif.com-effects (1)")
Unified data for finance in the Nordics.
We aggregate data, the process of collecting and combining data from multiple sources into a single dataset for the purpose of analysis, reporting, or gaining insights. This process involves taking individual data points or records from various sources and assembling them into a unified format, making it easier to analyze trends, patterns, and relationships across the data.
A RESTful approach
We unify the response from underlying ERP systems into a standard structure so that you do not need to understand the complexity of those underlying systems.
Zero-trust approach
We follow a zero-trust approach, granting and revoking access as necessary. Access to production environments is strictly controlled and logged.
Encryption for sensitive data.
We encrypt sensitive data using the highest level of encryption (AES 256-bit encryption) and do not expose it publicly. When stored, no one can see credentials.
Contact us today and let's find out what's possible with Zwapgrid API.1.
