...
Data validation as part of the system’s JSON verification node functionality can be potentially abused by the system. There are comprehensive instructions on how this can be mitigated in the official Validate function documentation. We recommend that users be aware of the important security considerations before entering JSON schema in the system.
Certifications
ISO 27001
DigitalRoute became ISO 27001 certified in 2018. This proves to our customers and partners that we are continuously managing the security of our information and data. We conduct ISO 27001 re-audits every year and a new audit every third year.
SOC 2 Type II
Since January 2021, DigitalRoute is SOC 2 Type II certified. An independent auditor has evaluated our security controls to ensure they are suitably designed to meet service commitments and system requirements, and are operationally effective over a period of time (12 months).
ISO 9001
DigitalRoute became ISO 9001 certified in 2020. ISO 9001 is a standard that defines the requirements for a quality management system (QMS). The standard helps businesses and organizations be more efficient and improve customer satisfaction.
PCI/DSS
DigitalRoute Cloud Edition is not in scope of PCI/DSS as it acts as an intermediary. DigitalRoute does not process Payment card industry data nor does it offer any specialized capabilities in this area. It is each tenant responsibility to ensure that data processing routines are set according to the nature of processed data.
Useful Links
NIST Special Publication 800-63Bregarding password security. This is the policy defined by the USA National Institute of Standards and Technology, responsible for many IT standards used worldwide.
JSON Schema Validation NSA Security Guidelines used during validation.