We take the safety of your data very seriously

Limited access

Access to data is strictly monitored and governed to reduce risk. Noted staff only access what is agreed upon in contracts and agreements with customers.

No data sharing

Noted does not disclose or share data with third parties except if required by law or at a customer’s request.

Storage

Noted utilises the latest technology and practices with Amazon Web Services, including up-to-date encryption and security protocols.

Encryption

All client data is encrypted in transit and at rest. Data is not stored on user devices. We use an advanced identity and key management system that ensures secure and managed access to data.

24/7 monitoring

Noted infrastructure is monitored 24/7 by automated systems. Our security officer maintains an Information and Security programme, identifying risks, and testing to minimise any potential security threats.

API security

Noted’s RESTful API provides encryption, secure authentication, and authorisation. All actions and traffic is logged and audited for security purposes.

Authentication

Noted uses industry standard authentication controls, including multi-factor authentication.

Access controls and auditing

Noted includes sophisticated access controls that enable administrators to control which users can access information in the Noted app. Access to information can also be audited.

Data Residency and Geographical Access

All of Noted’s data is held in Australasia, and can only be accessed from countries where our customers are resident. This limits access from malicious actors operating from other jurisdictions.

Independent security testing

Noted regularly has its code, network and systems tested and checked for vulnerabilities using Pulse Security.

Certification

Noted is currently going through the certification process for ISO 27001.