Security Policy

One of our top priorities is to keep client data secure & safe. Our goal is to provide a secure environment, while also being
mindful of application performance and the overall user experience.

Krinati employs stringent security standards and measures throughout the entire organization, with every team member being trained and kept up to date on the latest security protocols. The company regularly undergoes testing, training, and auditing of our practices and policies to ensure compliance with best practices.

End-to-End Security

Krinati is hosted entirely on Amazon Web Services (AWS), providing end-to-end security and privacy features built in. Our team takes additional proactive measures to ensure a secure infrastructure environment.

For additional, more specific details regarding AWS security, please refer to
https://aws.amazon.com/security/

Data Center Security

Amazon web Services (AWS) maintains an impressive list of reports, certifications, and third-party assessments to ensure
complete and ongoing state-of-the-art data center security – https://aws.amazon.com/compliance/programs/
They have many years of experience in designing, constructing, and operating large-scale data centers.

AWS infrastructure is housed In Amazon-controlled data centers throughout the world. Only those who have a legitimate
business need to have this Information. Those with such a need will be informed of the “actual location” of these Amazon data
centers, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access.

More information on AWS data centers and their security protocol can be accessed here –
https://aws.amazon.com/compliance/data-center/data-centers/

Application Security

All Krinati web applications are powered by 256-bit SSL, which can’t be decrypted by any third party. This Is the same level
of encryption used by banks and financial institutions. All data for Krinati is encrypted at rest using AES-256 encryption,
which cannot be decrypted by anyone who doesn’t have the key.

We are committed to providing the best possible IT infrastructure to our customers. Krinati actively monitors all security and
performance aspects 24/7/365. We run automated security tests on a continuous basis and contract a third party for
penetration testing every year.

Regarding privacy, you can view our full privacy policy here – https://krinati.co/privacy

Infrastructure Security

The Krinati infrastructure is hosted in a fully redundant, secured environment, with access restricted to operations support
staff only. These measures allow us to leverage complete data and access segregation for complete anonymity
and security.