We work together with security party RadicallyOpenSecurity, who perform pen tests on the systems. They praise our technical stack as follows: “The source repositories were well shaped and clearly structured. The overall quality appeared to meet requirements of modern software development and security best-practices.”
To guarantee the continuity of our services at all times, Ruler has committed to setting up and maintaining a sound source code escrow arrangement on behalf of the customer.
Hosting and Security is described in detail in a separate document. You can request the document by sending us a message.
SOC2 certification
In addition, we are working with Durfit to obtain a SOC2 Type 1 certification. SOC2 sets criteria for managing data based on five “service principles”: security, availability, processing integrity, confidentiality and privacy. This certification ensures that:
- The description of the IT service organization’s system, including its internal control measures, gives a true and fair view of reality; and
- That the internal control measures are adequate.
The certification process for the SOC2 Type 1 statement is expected to be completed in early 2022.