HomeX has implemented best-in-class security to help protect and keep customer data safe. Our security program is based on best practices and frameworks developed by ISO 27001:2013 and 27018:2019.
HomeX has implemented best practices to ensure access to data is authorized and based on the principle of least privilege. These controls include:
HomeX’s information security management system has been built to align to ISO 27001:2013 and ISO 27018:2019 and includes policies, standards and procedures covering, but not limited to:
HomeX ‘s cloud-hosted database platform manages and controls data backups as specified by HomeX. Database backups are never stored offsite or on removal media.
Contact us to have any of your personally identifiable information scrubbed from our production databases.
All services used by HomeX are configured in accordance to the data they is process, transmit or store:
HomeX uses a password management tool to manage passwords and provide context and visibility into password compromization across the organization.
HomeX complies with applicable laws, regulations and contractual requirements.
HomeX relies on cloud platform and SaaS providers to conduct its business activities. We're transparent about the vendors we use to process and store customer data. To view HomeX's subprocessors, please send a request to firstname.lastname@example.org.
HomeX collects personal data to provide service to its customers.
HomeX leverages serverless environments. Less infrastructure to manage and maintain; increases security. HomeX has enabled all security best practices for its workloads based on CSP recommendations.
Production Environment Isolation
All projects are contained to their own namespace, with tighter privileges and controls for access, separated from the development environment.
HomeX performs penetration tests on an annual basis against its mobile, web and API services/applications.
HomeX uses a centralized coding repository to manage, track and control changes to all HomeX environments. In addition, HomeX has implemented Secure By Design practices to ensure that application and customer data remains safe.
HomeX utilizes an open source and code scanning platform to monitor, track and report on open vulnerabilities and dependency risks.
Endpoint Detection & Response
HomeX has deployed an Extended Detection and Response Platform across all its workstations.
Mobile Device Management
All HomeX mobile devices, inclusive of smartphones, tablets and laptops are enrolled in the Mobile Device Management platform.
HomeX hosts its services and infrastructure in the cloud. Network security controls are managed by our cloud service providers and SaaS vendors.
Access to production networks is limited to employees with business need.
HomeX virtually executes all attachments to validate their legitimacy and catch any unwanted or malicious code prior to them being released to mailboxes.
Advanced Spam and Malware Controls
HomeX has enabled advanced spam and malware filtering controls within its Email solution to auto-filter malicious content or allow staff to report suspicious activity.