Log In Join Us

Join Phaidon International to reimagine your potential.

Join Us Log In
Banner Default Image

Security Policy

Policy Name: Online Security Policy
Organisation Name: Phaidon International Group
Date of Last Update: April 2024

Phaidon International prioritizes the security of your data by employing world-class measures across our services to ensure that our candidates and clients are safeguarded to the highest standards. We understand the paramount importance of maintaining the integrity and confidentiality of your data. Here's how we ensure this.

Robust Security Measures

Our security framework adheres to international standards and industry best practices, including ISO 27001, ensuring a highly secure and reliable environment for your data.

Infrastructure Security

Our systems are hosted across multiple Azure Availability Zones, guaranteeing reliability and accessibility. Additionally, our infrastructure boasts multiple layers of defence mechanisms, including firewalls, web application firewalls, DDoS mitigation, and advanced routing configurations, all monitored through comprehensive logging of network traffic.

Application Security

We implement security-oriented design principles at various layers, including rigorous vulnerability assessments, end-to-end testing, and unit testing. This approach addresses authorization aspects and ensures the resilience of our core applications.

Data Encryption

All data, both in transit and at rest, is encrypted using cutting-edge encryption standards, including TLS 1.3 for traffic encryption and AES-256 or better for data at rest. Credentials are further protected through hashing and salting using modern hash functions.

External Audits and Penetration Testing

To maintain transparency and accuracy in our security posture, we conduct regular external audits and penetration tests by independent auditors. These assessments provide unbiased insights into our security practices, supplemented by ongoing SOC2 audits.

Physical Security

While operating primarily in the cloud, our physical security measures include strict access controls, CCTV surveillance, and alarm systems in our offices. Our data centres, hosted on Azure, employ leading physical security measures for enhanced protection.

Disaster Recovery and Backups

We prioritize uninterrupted service delivery through continuous backups of user data every 5 minutes, distributed across various locations and encrypted for security. Our Disaster Recovery Plan undergoes annual testing to ensure effectiveness and alignment with operational responsibilities.

Security Awareness and Training

Recognizing the pivotal role of employees in maintaining security, we provide comprehensive information security awareness training during onboarding and quarterly refresher courses. Additionally, all employees are required to adhere to our Acceptable Use Policy.

Access Control

We regularly review user access permissions to uphold the principle of least privilege, ensuring that employees only have access to the data necessary for their roles. Access rights are promptly adjusted in response to changes in employment status, maintaining the confidentiality of your data