We Prioritize Your Data’s Security and Compliance 

At gNext, we are committed to providing top-tier security and compliance to protect your data and ensure your peace of mind. Our platform employs rigorous security measures and compliance protocols to safeguard your information throughout every interaction you have with our services. 

Comprehensive Data Protection 

gNext ensures the security of your data through: 

End-to-End Data Encryption

We secure your data from the moment it leaves your device until it reaches our servers, using TLS 1.2+ encryption during transit. Additionally, your data is encrypted at rest using AES 256-bit encryption, ensuring that your information remains confidential and secure. 

SOC 2 Type I Compliance

We focus on the security of our platform and the protection of our customers’ data. This certification is a testament to our commitment to upholding the highest standards of data security and operational excellence. An independent audit has verified that gNext’s systems and controls meet the stringent criteria set out for security, demonstrating our dedication to safeguarding against unauthorized access and data breaches. Our adherence to the SOC 2 Type I standards reinforces our promise to provide a secure and reliable service, ensuring peace of mind for our clients and their sensitive information. The audit report is available upon request. 

Single Sign-On (SSO) Support

To simplify access and enhance security, gNext supports Single Sign-On (SSO) across multiple providers via SAML 2.0. This allows users to access gNext with credentials from Google Apps, Microsoft Office 365, Active Directory Federation Services, and more, providing a seamless and secure login experience. 

Multi-Factor Authentication (MFA) Support

MFA enhances the security of our platform by requiring users to provide two or more verification factors to gain access to their accounts. This significantly decreases the likelihood of unauthorized access, even in the event that a password is compromised. By integrating MFA, we ensure an additional layer of security, protecting sensitive data and user accounts from potential threats and breaches. 

AWS-Hosted Infrastructure

Our platform is  hosted on Amazon Web Services (AWS), renowned for its state-of-the-art data center security. AWS adheres to stringent industry standards, including SOC, PCI DSS, and ISO 27001, handling all physical network and server security responsibilities. AWS’s comprehensive security practices extend to our application, ensuring your data is under constant protection. For an in-depth understanding of AWS’s security measures, their security whitepaper offers valuable insights. 

Firewall Protection and Intrusion Detection

Our network security architecture includes robust firewalls that control access to our systems, preventing unauthorized entry. By default, we deny all external network access, permitting only necessary ports and protocols. Our web application firewalls (WAFs) safeguard against common web threats like SQL injection, XSS attacks, and DDoS attempts. Additionally, we employ advanced intrusion detection and monitoring systems that analyze network traffic and API calls to AWS infrastructure, ensuring immediate response to potential security threats. 

Continuous Monitoring and Penetration Testing

Our dedicated security team continuously monitors our systems and performs regular penetration tests. This proactive approach ensures that we identify and remediate potential vulnerabilities to keep your data safe. 

Disaster Recovery Protocols

In the rare event of data loss, gNext has implemented strong disaster recovery protocols to ensure data restoration. Customer data is predominantly stored on AWS’s S3 service, boasting 99.999999999% durability and enabled object versioning for recoverability. Our databases and application services are designed for high availability and automatic recovery from failures, ensuring data integrity and availability. 

GDR Compliant seal

GDPR Compliance

gNext is fully committed to GDPR compliance, processing personal data transparently and lawfully. We respect the rights of data subjects and continuously refine our policies and practices to protect personal data effectively. For more details on our GDPR compliance and data protection practices, please refer to our Privacy Policy

Privacy Shield Certification

gNext proudly meets the requirements of the Privacy Shield framework, ensuring that we uphold high standards of data protection and transatlantic data transfer between the EU and US. 

At gNext, we are dedicated to maintaining the highest levels of security and compliance to protect your data. Our team continuously monitors and updates our security practices to address emerging threats, ensuring your information remains secure. If you have questions about our security measures, please reach out to us at support@gnextlabs.com. Your trust and security are our highest priority.