Security

Security that keeps with your business. pace

Every layer of FCE One is designed for trust — from how we store your data to how we respond when something goes wrong. Here's exactly how we do it.

SOC 2 Type IIISO 27001PCI DSS Level 1Penetration tested quarterly
At a glance

Core controls in five pillars.

Encryption

TLS 1.2+ in transit, AES-256 at rest, envelope-encrypted per-tenant keys.

Access

Least-privilege IAM, hardware MFA, just-in-time production access.

Detection

24/7 monitoring, anomaly detection, tamper-evident audit trail.

Response

< 15 min pager response, 72-hour breach notification commitment.

Resilience

Multi-AZ, encrypted backups, 5-min RPO, quarterly DR drills.

Compliance

SOC 2 Type II, ISO 27001, PCI DSS Level 1 via Stripe, GDPR/CCPA ready.

Need something we didn't cover?

Our security team responds to vendor questionnaires and custom reviews.