Information security is of utmost importance to us, as we know that it is critical for our clients. This is especially pertinent as we operate in a number of highly regulated and sensitive areas – life sciences, litigation, intellectual property – where sensitive information is being processed. To that end, our technical infrastructure is designed in such a way as to ensure maximum security.
Secure Cloud Computing
All of our services are hosted in top-tier secure cloud-computing facilities and all translations are carried out using this platform. Iconic uses Amazon Web Services (AWS) for cloud production, and our APIs can be configured to process data in specific jurisdictions, where required, ensuring compliance with regulations such as GDPR in the European Union. We make use of Virtual Private Cloud (VPC), security groups, and many other measures to protect all information.
- ISO 9001, 27001, 27017, and 27018
- SOC I, II, and III
- HIPAA and HITECH
- SEC Rule 17a-4(f)
- Cyber Essentials Plus
Data Transfer and Encryption
Data refers to the documents and text sent to the Iconic API for translation. Iconic does not retain any data at rest that is sent to our service. All data sent for translation are transient through the service.
Your data is encrypted in translation between your site and our servers using secure HTTP over SSL up to 256-bit. Unencrypted connections to our API endpoints are blocked. SSL/TLS (HTTPs) connections are required for all client sessions.
Your data is private to your Iconic connection, it is processed on dedicated server instances in AWS, and is never shared with other accounts and/or users. Iconic does not use or allow the use of your translation data for its or any third party’s own purposes.
Security Policies and Measures
Iconic has regular penetration testing and vulnerability scanning carried out both internally and by independent accredited third-parties. We are also pending Cyber Essentials certification.