Security
Enterprise-grade security to protect your critical environmental data.
Minimum prioritises data security, privacy, and compliance at every step—so you can focus confidently on achieving your sustainability goals.
ISO 27001 & SOC 2 Type 2 Certification
Minimum maintains ISO 27001 certification and SOC 2 Type 2 compliance, demonstrating rigorous adherence to internationally recognised information security standards. Regular independent audits ensure ongoing compliance and continuous improvement in our security posture.
Robust Data Encryption
All data is encrypted both at rest and in transit using industry-standard encryption protocols (AES-256 encryption at rest, TLS 1.2+ in transit), ensuring that your sensitive environmental data is secure and protected from unauthorised access.
Comprehensive Access Controls
We apply the principle of least privilege across our platform, strictly managing access rights and permissions. Detailed role-based access control (RBAC) configurations ensure users access only the data and features necessary for their roles, minimising risk and exposure.
Secure Development & Vulnerability Management
Minimum integrates security best practices directly into our development lifecycle, including regular penetration testing, static and dynamic code analysis, and continuous monitoring for vulnerabilities. Identified issues are swiftly addressed according to clearly defined incident management processes.
Continuous Security Monitoring
We employ 24/7 security monitoring tools and advanced threat detection systems to proactively detect and respond to potential security threats. Regular internal reviews and threat modelling exercises ensure our systems adapt rapidly to emerging security landscapes.
Data Privacy & Compliance
Minimum adheres strictly to privacy laws and regulations such as GDPR and UK data protection standards. Comprehensive privacy policies, Data Protection Impact Assessments (DPIAs), and user consent management ensure transparent handling of personal and confidential information.
Business Continuity & Disaster Recovery
Our robust business continuity and disaster recovery plans are regularly tested and refined. Automatic backups, redundant infrastructure, and geographically distributed data centres help ensure your data remains accessible and recoverable in any scenario.
