We designed and built Data Republic’s technology infrastructure from the ground up with protection and security of data at the forefront every activity. From the initial ingestion, through to the processing and exchange of data, Data Republic provides dynamic analysis and data security controls to ensure that all Datasets, Data Listings and Data Products are protected from unauthorized access and extraction.
The security of Data Republic’s platform is second-to-none with full encryption of data, network segregation, and continuous hardening principles applied when developing the platform. This means that previous security levels are retained and built upon for the next iteration. As a user or partner of Data Republic, hardening in the build gives you confidence that the platform is safe and secure.
Data Republic maintains a data security environment that is ISO/IEC 27001:2013 Information Security Management Systems (ISMS) certified, the international standard on how to manage information security.
Additionally, Data Republic's data security environment maintains alignment with the following ISO/IEC international standards:
ISO 27002:2013 (Code of Practice for Information Security Management); and
ISO 27018 for cloud based security.
Data Republic Network Security
Is the Data Republic network segregated for security?
At Data Republic we have segmented our systems into security zones based upon trust models so that in the unlikely event of a system compromise, any compromise will only affect a single system.
For example, if the portal is compromised, the portal does not have access to any data in the data lake, as this is processed in a different network zone. Communications between zones is conducted via defined web services, which are robust against malicious use.
Does Data Republic deploy isolated dynamic environments?
Data Republic has software-defined isolated dynamic environments.
Data analysts are free to write scripts to process mass data efficiently. Scripts have full access to the data imported into each dynamic environment, so the isolation we have put in place between each dynamic environment is critical to the overall security of the system.
Does Data Republic have a security plan?
Data Republic has a Data Security plan which includes facets such as collecting only the required information, keeping it safe, and destroying any information that is no longer needed. We have more information available on our security plan and security practices.
What Risk Management Principles does Data Republic comply with?
Data Republic complies with ISO 31000 (Risk management – Principles and guidelines). It provides principles, framework and a process for managing risk. ISO 31000 cannot be used for certification purposes but does provide guidance for internal or external audit programs.
Organizations using it can compare their risk management practices with an internationally recognized benchmark, providing sound principles for effective management and corporate governance.