Security

Your trusted partner for global growth

Multiplier is built on a foundation of robust security, embodying our commitment to 'security by design'. Security is woven into our DNA — not an afterthought. We uphold the highest international standards, ensuring your global workforce data is safe and protected 24/7.

Designed for security, certified for compliance

We are certified to the highest global standards for data security and compliance

SOC 2

Multiplier is SOC 2 Type I and Type II certified ensuring all our information systems and processes meet rigorous AICPA standards. Our SOC 2 Type II report, audited annually, ensures compliance with key principles of confidentiality, processing integrity, availability, and security in all our processes.

SOC 3

Our publicly available SOC 3 report, offers a clear and concise overview of our adherence to industry-recognized compliance standards. This report underscores our ongoing commitment to security and privacy.

ISO 27001:2022

Our ISO 27001:2022 certification ensures that our information security management system follows a robust ISO framework for managing risks efficiently and securing the data owned or processed by Multiplier.

GDPR

We adhere to European data protection regulations for risk-free global operations across borders. We empower your employees with the right to modify or delete their data upon request, upholding the highest international privacy standards outlined by GDPR.

Enterprise-grade platform security

We ensure security is built into how we design our products from the ground up

Industry-standard authentication and authorization

Token-based authentication
A protocol that validates the user at every step across all our systems.
Multi-factor authentication
We enforce MFA to ensure an extra layer of security for our users and their data.
Principle of least privilege
Centralized authorization using Role Based Access Control (RBAC) and Attribute Based Access Control (ABAC), ensuring restricted user access.

Secure data all-the-way

Data encryption
Any stored data is fully encrypted using industry-standard cryptography. Multiple layers of encryption, right from the data item level, to ensure maximum security.
Data transmission
Data in transit is transmitted exclusively through encrypted channels using TLS 1.2 or higher, ensuring that your data reaches us securely and remains confidential.
Data segregation
We maintain strict segregation between production, development, and testing environments, ensuring that data and system functionality are isolated, thereby protecting our users.

Robust fault tolerance

Scalable infrastructure
Our applications operate on highly available infrastructure designed to auto-scale and adapt instantly to changes in demand. This ensures minimal risk of service disruptions.
Data backups
We perform daily and real-time backups to ensure continuous data protection and eliminate the risk of data loss.
Business continuity and disaster recovery
Our robust BCP and DR plans ensure high resilience in the event of a disruption by replicating our entire infrastructure in multiple data centers and regions.

Advanced and reliable cloud security

Multiplier leverages AWS's world-class cloud infrastructure, following industry best practices such as environment segregation, disaster recovery, and stringent authorization/authentication protocols. As an Amazon-certified partner with a proven track record (Foundational Technical Review), we ensure robust security.
AWS complies with the highest industry standards, including SOC 1, 2, 3, ISO 27001/27017/27018, and PCI-DSS. We enhance security through network isolation, strict access controls, and advanced tools like AWS WAF and Cloudflare. Our AI-driven solutions provide continuous 24/7 threat detection and cloud security posture management.

An entire organization focused on security

Industry-standard endpoint security

Top-tier security through centralized mobile device management (MDM), allowing us to manage all devices according to industry best practices.
Our robust antivirus and malware protection leverages leading endpoint security tools, while secure authentication is enforced via SSO and MFA across all internal systems.
Web browser security is enhanced using Enterprise Browser Management tools and policies for added protection.

Least privilege as a fundamental

Principle of least privilege, granting access to tools and infrastructure strictly based on job requirements.
Quarterly user access reviews are conducted to verify internal and privileged access.
Centralized user provisioning and revocation through Identity Access Management (IAM) to ensure efficient and secure management of user access rights.

Always staying vigilant

Security and privacy awareness training to ensure our workforce stays fully informed and quarterly internal audits that follow SOC 2 and ISO 27001:2022 standards.
External penetration testing is performed twice a year using CIS/SANS/NIST benchmarks.
Robust vendor risk management process to ensure we work with only the best-in-class vendors.

A dedicated team you can trust!

We keep your data safe. Our dedicated Information Security Team follows rigorous industry practices and is committed to keeping your data under lock and key. Our team is proactive in security and ensures the entire organisation and the way it functions is of the highest security standards. At Multiplier, we build security into everything we do, so you can sleep soundly, knowing your information is protected 24/7.