Data Sovereignty
All data is stored and processed exclusively within CEMAC territory. We operate our own infrastructure โ no data is sent to external cloud providers, foreign AI services, or third-party processors.
Encryption Standards
At Rest
AES-256 encryption for all stored data. Decryption keys are owned by the client organisation.
In Transit
TLS 1.3 for all data in transit. Certificate pinning for mobile applications.
Access Controls
Role-based access control with 7 distinct roles. Every action is logged in an immutable audit trail. Rate limiting and input validation on all endpoints.
Incident Response
In the event of a security incident, affected parties will be notified within 72 hours as required by ANPD regulations.