Security
at Ometria

At Ometria, we're serious about the trust our clients have in us to protect their data, and are committed to upholding the highest standards of data protection and security.

data center
GDPR
certification ISO 27001
certification ISO 27701
lock
Our security culture

"Respecting the trust we've been given" is one of Ometria's core values, and we embed data security and compliance as an integral part of our everyday practices and processes.

Our leadership is committed to security, promoting security initiatives as a core organisational value. Employees are continuously educated on the latest threats and best practices, fostering an environment where security is seamlessly integrated into daily operations and personal responsibility is emphasised.

Team-wide training

Comprehensive training for each team member, with access based on principle of least privilege.

Gold standard security policies

Robust technical and operational security practices in line with global standards.

Dedicated in-house security expertise; backed up by third party experts

In-house legal and technical specialists supported by world-class external lawyers and privacy professionals.

Security credentials

Ometria's systematic approach to managing customer data, risk management, cyber-resilience and operational excellence, ensures customer data remains secure. By incorporating CSA's cloud-specific security controls and leveraging IAPP’s privacy management expertise, Ometria not only meets, but exceeds the requirements set by ISO 27001.

Information Security Management ISO 27001
Information Security Management ISO 27001
Cloud Security Alliance (CSA)
Cloud Security Alliance (CSA)
International Association of Privacy Professionals (IAPP)
International Association of Privacy Professionals (IAPP)

Technical & Operational
Security practices

Ensuring the highest standards of security practices is a central pillar of our commitment to protecting clients' data.

Global data privacy

We're committed to supporting our clients to operate in line with global data privacy standards to offer their customers compliant experiences.

01
UK & Europe

Enabling clients to operate in a way that satisfies GDPR and other European security standards.

02
US & Canada

Enabling clients to operate in a way that
satisfies North American security standards, including CCPA and more.