Security, Compliance, and Data Privacy
      Back to home
      1. Momentum AMP Support Center
      2. Additional FAQ Resources
      3. Security, Compliance, and Data Privacy

      Security Measures and Compliance Practices

      Thank you for your inquiry regarding our security measures and compliance practices. We take the security and privacy of your data seriously and have implemented several measures to ensure the highest standards of security and compliance.

      Security Measures

      We have implemented robust security protocols to protect your data, including:

      • A formalized Software Development Lifecycle (SDLC) to ensure secure development practices.
      • Adherence to personnel security best practices to safeguard access to sensitive information.
      • Secure system configurations, with all changes monitored under a strict Configuration and Change Management policy.

      Compliance Standards

      We rely on our trusted data center providers — IONOS, Microsoft Azure, and Amazon AWS — to ensure compliance with industry-leading standards, such as:

      • SOC (System and Organization Controls)
      • ISO 27001
      • PCI DSS

      These certifications offer a secure and compliant foundation for our operations, ensuring we meet or exceed industry standards.

      Data Handling

      The integrity and confidentiality of your data are our top priorities. Our data is:

      • Hosted, stored, and processed on the secure infrastructure of IONOS, Microsoft Azure, and Amazon AWS.
      • Managed by our providers, who adhere to global data privacy standards and employ stringent security measures to protect your information.

      Incident Response

      We have a well-defined incident response procedure to ensure the timely reporting, resolution, and communication of any security incidents. These procedures are further supported by the incident management frameworks of our data center providers, enhancing our ability to respond effectively.

      Certifications

      Our security posture is strengthened by the certifications held by our data center providers, including:

      • SOC
      • ISO 27001
      • PCI DSS

      These certifications are validated through regular third-party audits. Additionally, we are currently in the process of achieving SOC 2 compliance, which will further demonstrate our commitment to maintaining rigorous security and operational controls.