Legal
Trust Center (Security)
How Dash4Sec protects your data: architecture, controls and security practices.
Last updated: 17 de junho de 2026 · SAFONT REIS ASSESSORIA LTDA — CNPJ 49.204.046/0001-11
1. Security by design
Security is a priority throughout the Dash4Sec lifecycle. As a platform focused on cybersecurity maturity, we apply to ourselves the principles we help our customers adopt.
2. Multi-tenant architecture and isolation
Each organization operates in a logically isolated space. All queries are scoped by organization, preventing cross-access to data between customers.
3. Access control and authentication
Access is governed by roles and permissions (RBAC), with administrator, user and auditor profiles. We support two-factor authentication (MFA) and password policies configurable per organization (complexity, expiration and history).
4. Encryption and protection of secrets
Sensitive secrets, such as integration credentials and MFA secrets, are stored encrypted (AES-256-GCM). Traffic with the application occurs over secure channels (HTTPS/TLS).
5. Monitoring, auditing and backups
We log relevant events in audit trails, monitor operations and maintain backup and recovery routines to preserve the availability and integrity of the data.
6. Suppliers and incident response
We select sub-processors with appropriate security practices and maintain an incident response process, with notification to affected customers without undue delay.
To report a vulnerability or incident: seguranca@dash4sec.com.