.avif)
Data protection and information security sit at the very heart of everything we do. So your data is protected in transit and at rest, and we’re continuously testing our infrastructure to make sure our tech stays security-first in everything.
We don't sell your data to third parties without your consent. It's just not what we do here at Blinq. Your data is yours to share with your network.
Blinq is SOC 2 Type II certified. Which means we have the robust and appropriate controls in place to mitigate risks related to security, availability, and confidentiality.
.webp)
We host Blinq services and data on Google Cloud Platform (GCP). Google Cloud is a trusted and reliable service provider that leads in security innovation and maintains a laundry list of globally recognised security compliance certifications including ISO 27001, ISO 27017, SOC I, II & III.
All data sent to and from Blinq is encrypted in transit using TLS 1.2 or higher. Data at rest is encrypted using industry-standard encryption, including AES-256. TLS certificates are issued by trusted certificate authorities, including Google Trust Services and Let’s Encrypt.
We maintain centralized logging and continuous monitoring across our systems to detect unusual activity and respond quickly to potential security events. Logs are access-controlled and retained according to defined policies, and automated alerts support timely investigation and remediation.
We save daily backups of critical systems and data. Backups are encrypted and periodically tested to validate recovery procedures and support business continuity.
We restrict access to data, servers and networks based on role and business need. Single sign-on (SSO), multi-factor authentication (MFA) and strong password requirements are enforced across systems that support Blinq. Access to customer data is limited to authorised employees who require it for their job.
Blinq has developed an extensive set of information security policies that govern employee behaviours. We review and update these regularly. All employees complete security awareness training at least annually. All company-issued devices are centrally managed and monitored to maintain security standards.
Blinq’s commitment to security extends beyond our own internal standards. We review every vendor before we engage them to make sure they meet appropriate security and data protection requirements.
Blinq is currently engaged in the process of SOC2 certification. Blinq is using Vanta to manage and monitor the security controls that meet SOC2 standards.Blinq is committed to abiding by the requirements of the Australian Privacy Policy and GDPR. For more information about how we collect, handle and process information including your rights view our Blinq is SOC 2 Type II certified and committed to protecting personal data in accordance with applicable privacy and data protection laws in the regions where we operate, including GDPR and the Australian Privacy Act.
We make sure customer data is handled responsibly and securely with a comprehensive security and privacy program. This includes documented policies, access controls, incident response procedures, vendor oversight, and ongoing risk management. For more information about how we collect, use and protect personal data, including your rights, please see our
