We are security experts, so we get it.

We put a heavy emphasis on security throughout our development life cycle and within the application itself. Security is one of the biggest aspects of what we do and we take pride in the balance that we achieve between security and usability.


We have various industry leading defence mechanisms in place such as Anti-DDoS, Intrusion detection and prevention and much more.


We use encryption throughout the mappd solution, ensuring that data is encrypted at rest and in transit as standard, we use AES-256 bit encryption.


To ensure that any anomalies are picked up on, we have monitoring and alerting in place to analyse 24/7. Logging is also in place to ensure that we get effective data to analyse.

Penetration Testing

Penetration testing forms a core part of our security programme, we carry out tests with every major release and on a regular basis too. We are looking into having a public bugbounty in addition to this.


Our platform is accredited to ISO27001, CSA, ISO27018, ISO9001, PCI-DSS and other industry recognised standard. As a company we are working towards Cyber Essentials, Plus and IASME Gold.

Vulnerability Scans

We carry out frequent vulnerability scanning both internally and externally to ensure that any new vulnerabilities are identified and mitigated as soon as possible using industry standard technology and processes


We have a clear process for reporting issues and vulnerabilities to [email protected] where we will respond and act as soon as possible, we are considering opening a public bug bounty for further coverage of or application.

Secure by design

Security and privacy is at the core of mappd, so it's only right that we champion security and privacy by design. We have thorough end to end assurance processes and carry out regular data privacy impact assessments.

Secure Cloud

Our platform is stored within secure UK and EU datacenters and always will be. Part of our road map involves reviewing the decision to physically host our own servers or move to a private cloud set up, at present it isn't required but feel free to share your thoughts.
Close Menu
Secured By miniOrange