Data Security Standards

At Twala, our primary objective is to establish trust in the digital world by prioritizing security in all aspects of our platform. To ensure the security of all data communication, we utilize Transport Layer Security (TLS) to encrypt all information in transit, protecting against man-in-the-middle attacks. Additionally, we require all interactions with our platform, including website, portals, and APIs, to occur exclusively through HTTPS.

All data stored within Twala is encrypted at rest using AES 256-bit encryption and is securely maintained in SOC 1 Type II, SOC 2 Type I, and ISO 27001-compliant data centers (specifically, those provided by AWS). We designed our platform with ease of integration in mind, and thus, take responsibility for managing complex security operations on behalf of our users.

However, security is a shared responsibility, and businesses must ensure that their systems are compliant with security standards to maintain secure communication with our platform. To ensure maximum security, we utilize encryption, authentication, and tokenization to prevent data breaches and unauthorized access. Encryption protects data during server and endpoint exchanges, authentication limits access to authorized users and applications, and tokenization keeps sensitive information secure within servers to prevent it from becoming a target for malicious agents.

We welcome feedback, comments, and questions about the security practices we employ at Twala, and encourage users to reach out to us with any concerns or queries.