Krank
Enterprise-grade security

EmbeddedInfrastructureSecurity

Secure, scalable infrastructure embedded within a connected operational ecosystem. Intelligent control and reliability for your most critical assets.

SOC 2 Type IIISO 27001GDPR Ready

1. Encryption in transit

Communication between you and our servers is secured using 256-bit SSL/TLS encryption, ensuring data is protected while moving between systems.

2. Secure infrastructure / Application

Krank's infrastructure is hosted on AWS, a secure cloud platform with accreditations including SOC 2, ISO 27001, PCI Level 1, and FISMA Moderate.

3. Vulnerability Scanning & Patching

We continuously monitor for vulnerabilities and apply patches to third-party software and services within predefined SLAs.

4. Penetration Testing

We conduct periodic penetration tests through independent, qualified third-party VAPT providers to identify and address security risks.

5. Data Encryption

All sensitive data is encrypted at rest using AES standards. User passwords are securely hashed and never stored in plain text.

6. Application Access

Access to data is controlled through a role-based access control (RBAC) system, ensuring users can only view data relevant to their organization.

7. Access Control

Production infrastructure access requires multi-factor authentication and is restricted to authorized personnel. Customer data access is limited to necessary, support-related use.

8. Security Training

All personnel undergo security training covering best practices and common human-based attack vectors such as phishing, password risks, and malicious attachments.

9. Disclosure

We are committed to maintaining system security. If you identify a vulnerability, please report it to security@krank.com so it can be addressed promptly.