Manufacturo security is our top objective

Best practices

Security is at the core of our architecture and software development lifecycle, which follow best practices such as OWASP and Microsoft SDL.

Access control

Safe user authentication and authorization is our priority, which we ensure by implementing reliable standards such as OpenID and OAuth 2.0.

Protection and monitoring

To automate cybersecurity protection and monitoring, we use various tools such as Cloud-Native Application Protection Platform (CNAPP), Security Information and Event Management (SIEM), firewall, and others.

Tests and audits

Our high security standards and solutions are verified by annual reviews and penetration tests executed by independent and well-recognized companies (which provide such services for banks).

Dedicated environment

We provide a dedicated and isolated environment for each customer to prevent other customers from accessing each other’s environments.

Manufacturo is a reliable organization and platform

Nodowntime

We understand well that our users depend on Manufacturo for their daily operations which are critical. With this, we plan no downtime, and our system is continuously updated and upgraded without interruption.

Uptime

Our infrastructure and software architecture assures high availability (uptime>99,9%) and quick recovery time in case of any major infrastructure outages.

Qualitymanagementprocess

Our extensive Quality Management Process covers all our major processes, including, but not limited to, Software Development, Incident Management, Disaster Recovery, Risk Management, and more. Our processes are followed, analyzed, and continuously improved.

Soc2

We undergo annual SOC 2 Type II audits performed by independent auditors to ensure our organization is reliable, well-managed, and trustworthy (audit reports are available for our customers upon demand).

Azure (1)

We use Microsoft Azure for Manufacturo hosting and all its technology stock to assure reliability, scalability, and security.

Manufacturo complies with the US and EU regulations

ITAR, EAR

  • We have strict access controls, encryption measures, and export control procedures to prevent unauthorized access or transfer of sensitive information as required by ITAR and EAR.
  • We use Azure Government infrastructure that adheres to security controls for SOC 2 and FedRAMP (among others).
  • Manufacturo is registered with the Defense Export Control and Compliance System (DECCS).

Itaerear
Gdpr

GDPR

  • We have implemented strict data protection and cybersecurity measures to protect all personal data as required by GDPR.
  • European customers’ data are stored and processed only in the EU.