Security
Nexadata meets the rigorous standards set by the AICPA SOC framework, delivering a secure and reliable service that aligns with both industry benchmarks and our customers’ internal security requirements.
We adhere to globally recognized privacy regulations, including GDPR, CCPA, and other applicable standards, ensuring your personal data is handled with the highest levels of security, transparency, and care.
Nexadata is built on Amazon Web Services (AWS), leveraging its industry-leading security, scalability, and global availability. Looking ahead, Nexadata is evolving toward an infrastructure-agnostic model to offer customers even greater flexibility and deployment options.
Our architecture is purpose-built to eliminate single points of failure, with redundancy across independent geographic zones to ensure exceptional uptime and service continuity.
All customer data is backed up daily. Our snapshot feature enables immutable point-in-time copies of your environment for added assurance. We maintain Recovery Point Objective (RPO) of 24 hours to minimize disruption and data loss.
All data in transit is encrypted using TLS 1.3 with HSTS preloading and short-lived certificates. Data at rest is secured using AES-256 encryption and managed via cloud-native key management services (KMS), ensuring compliance with NIST and enterprise-grade standards.
Including Google Authentication via OAuth 2.0, Single Sign-On (SSO) with SAML 2.0, including direct support for Okta and Azure Active Directory, and Passwordless Login using secure, PIN-based authentication, eliminating passwords while maintaining strong access controls
Includes roles like Security Admin, Connection Admin, User, and Super Admin, with permissions scoped by Workspace and Environment.
Workspaces isolate teams (e.g., Treasury vs. Finance), each with its own environments (DEV, PROD), enabling separation of duties and security boundaries.
Fully integrated promotion workflows support draft, published, deprecated, and archived statuses with complete change logs and audit trails.
Full logging and rollback capabilities enhance compliance and visibility. Diff Comparisons simplify version control and approval workflows.