Security Policy

Last updated: April 27, 2026

Security is foundational to Tendwa. This page describes the technical and organisational measures we use to protect Customer Data. It complements our Privacy Policy and Data Processing Agreement.

1. Hosting and infrastructure

  • Tendwa is hosted on Microsoft Azure in U.S. data centres.
  • Azure data centres are physically secured with 24/7 surveillance, biometric access controls, and ISO 27001 / SOC 2 certifications.
  • Application servers are isolated in private virtual networks behind a managed firewall.

2. Encryption

  • In transit: all traffic uses TLS 1.2 or higher.
  • At rest: database storage and backups are encrypted using AES-256.
  • Sensitive fields: credentials and tokens are hashed (passwords) or tokenised (payment data via Stripe).

3. Authentication and access control

  • Password complexity requirements enforced at sign-up.
  • JWT-based API authentication with short-lived tokens.
  • Role-based access control with five role templates and ~80 granular permissions.
  • Audit log records who changed what and when, scoped per company.
  • Strict company-level data isolation (multi-tenant by CompanyId).

4. Payment data

Card payments are processed by Stripe, a PCI-DSS Level 1 provider.Tendwa never sees the full card number, CVV, or PIN. We store only a tokenised reference and the last four digits.

5. Backups and disaster recovery

  • Encrypted database backups are taken daily.
  • Backups are retained for 30 days, with longer retention for Enterprise customers under contract.
  • Backups are stored in a separate region for resilience.
  • Documented restore procedures are tested periodically.

6. Logging and monitoring

  • Application and access logs are centralised and reviewed.
  • Failed login attempts and unusual access patterns trigger alerts.
  • The audit log is immutable and viewable by Customer admins for their own data.

7. Vulnerability management

  • Dependencies are regularly updated and scanned for known vulnerabilities.
  • Code is reviewed prior to deployment.
  • Penetration testing is conducted on a periodic basis.
  • Security advisories that affect Tendwa are tracked and remediated based on severity (critical: 24h; high: 7d; medium: 30d).

8. Incident response

We maintain a documented incident response plan covering detection, containment, eradication, recovery, and customer notification. In the event of a confirmed Personal Data breach affecting Customer Data, we notify affected Customers without undue delay (and in any event within 72 hours where reasonably possible) per our Data Processing Agreement.

9. Sub-processors

We carefully vet sub-processors and require them to maintain appropriate security measures. Current sub-processors are listed in our DPA.

10. Personnel

  • Access to production systems is limited to a small group of authorised personnel.
  • All personnel are bound by confidentiality obligations.
  • Access is revoked promptly when no longer needed.

11. Customer responsibilities

Security is a shared responsibility. Customers are responsible for:

  • Choosing strong passwords and protecting credentials.
  • Granting users only the permissions they need.
  • Removing user access promptly when staff leave.
  • Keeping their own systems and devices patched and secure.

12. Reporting a vulnerability

Found a security issue? Please disclose it responsibly by emailing privacy@tendwa.com with details. We commit to acknowledging your report within two business days and will not pursue legal action against good-faith security researchers who follow responsible-disclosure practices.

13. Contact

Security inquiries: privacy@tendwa.com.