The Intellicheck Security Commitment
Our Approach
Intellicheck is fully committed to protecting the security and privacy of your data. To that end, Intellicheck follows industry standard data security frameworks and best practices. Intellicheck products are built with security in mind, and has implemented layered security controls, designed to protect and secure Intellicheck Cloud customer data.
Intellicheck is committed to transparency about the data we handle. Read our privacy policy for more information.
We are committed to ensuring that the Intellicheck Identity Platform keeps customer data secure at all points, and as part of that commitment, that we adhere with key data protection standards. Because we operate in multiple geographies, compliance with regional laws and regulations is key to our business success.
Infrastructure Security
- Hosted on a leading cloud infrastructure provider (Microsoft Azure)
- Network and Perimeter Protection
Customer Data Protection
- Logical Tenant Separation
- Encryption In-Transit (TLS 1.2, TLS 1.3)
- Encryption At-Rest (AES-256)
Application Protection
- Web Application Firewall (WAF)
- Distributed Denial of Service (DDoS) Protections
Organizational Security
- Security Education & Awareness Training
- 24/7 Monitoring and Incident Response
- Vendor Risk Management
Compliance Standards
Intellicheck has detailed security standards that are regularly assessed, reviewed, and tested for education and efficiency. Managing sensitive personal and financial information is important business.
At Intellicheck, we have a strong, long-standing commitment to security, compliance, and data protection.
PCI DSS Level 4
The Payment Card Industry Data Security Standards (PCI DSS, or more commonly, PCI) are a set of standards set forth by the four major card associations to protect cardholder data. All merchants and processors need to have physical, electronic, and procedural controls in place to ensure that cardholder data is stored and handled securely at all times. Intellicheck is PCI Level 4 compliant.
SOC 2 Type 2
A SOC 2 Type 2 report is an internal controls report capturing how a company safeguards customer data and how well those controls are operating over time. Companies that use cloud service providers use SOC 2 reports to assess and address the risks associated with third party technology services.
Intellicheck has completed a full third-party SOC 2 Type 2 audit by an independent auditor who has evaluated our products, infrastructure, and policies, and certifies that Intellicheck complies with SOC 2 Type 2 standards covering the principles of Security, Availability, Processing Integrity, Confidentiality, and Privacy.
ISO 27001:2013
The International Organization for Standardization (ISO) is an independent, non-governmental international organization with an international membership of 163 national standards bodies. The ISO/IEC 27000 family of standards helps organizations keep their information assets secure.
ISO 27001:2013 is a globally recognized security standard driven by the implementation of an information security management system (ISMS). An ISMS is a security framework of policies, procedures and controls including administrative, physical and technical safeguards to manage information security risks to internal and external customer information.
Intellicheck, Inc. complies with, and has received ISO/IEC 27001:2013 certification.
ISO 27701:2019
The International Organization for Standardization (ISO) is an independent, non-governmental international organization with an international membership of 163 national standards bodies. The ISO/IEC 27000 family of standards helps organizations keep their information assets secure.
ISO 27701:2019 is a data privacy extension to ISO 27001. This standard provides the framework for organizations looking to put in place a system to support compliance with the EU’s GDPR, California’s CCPA, and other data privacy requirements. ISO 27701, also referenced as PIMS (Privacy Information Management System), outlines a framework for Personally Identifiable Information (PII) Controllers and PII Processors to manage data privacy.
Intellicheck, Inc. complies with, and has received ISO/IEC 27701:2019 certification.
