Trusted by +1000 companies worldwide
CERTIFICATIONS
Certified for enterprise trust
Our platform meets the highest international standards for information security, data privacy, and biometric accuracy.
GDPR Compliant
Full EU data protection compliance
ISO 27001
Information security management
ISO 27017
Cloud security controls
ISO 27018
Cloud privacy protection
iBeta Level 1
ISO 30107-3 certified liveness
SECURITY INFRASTRUCTURE
How we protect your data
End-to-end encryption
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). We use industry-standard cryptographic protocols to protect sensitive information.
Role-based access control
Granular permissions and role-based access ensure only authorized personnel can access verification data and system configurations.
Complete audit logs
Every action is logged with timestamps, user IDs, and IP addresses. Audit logs are retained for 365 days and can be exported anytime for compliance reviews.
24/7 security monitoring
Continuous monitoring and automated threat detection across our entire infrastructure. Real-time alerts for suspicious activity.
EU-based infrastructure
By default, we process and store data in the EU on AWS servers. For enterprise customers, we offer in-country processing with local data residency options.
Configurable data retention
Set retention policies from 1 month to 10 years, or delete data immediately via API. Process-and-purge patterns supported for minimal data footprint.
SECURITY FAQ
Questions about security
Didit is ISO 27001 certified for information security management. We're also GDPR compliant and iBeta Level 1 certified (ISO 30107-3) for biometric presentation attack detection. Certificate excerpts available on request.