Encryption
TLS 1.2+ in transit; AES-256 at rest. Keys managed in hardware-backed key management with rotation.
Access Control
Role-based access, least privilege, MFA on all administrative access, and quarterly access reviews.
Monitoring
24/7 security monitoring with centralized logging, SIEM, and incident response playbooks.
Vendors
Subprocessors are reviewed under a vendor risk management program with contractual data protection obligations.
Document maintained by PT Paramananda Perisai Nusantara · Last reviewed: Q2 2026. For inquiries: legal@nusakti.one