Trust & Security

Security at mkt-strategepro

Protecting customer data isn't a feature — it's the foundation of everything we build.

Our Security Pillars

Layered defenses across people, process, and technology.

Encryption Everywhere

TLS 1.2+ in transit and AES-256 at rest. Secrets and credentials are stored in dedicated managed key vaults.

Hardened Infrastructure

Hosted on tier-1 cloud providers with isolated network segments, private VPCs, and 24/7 monitoring.

Strong Access Controls

Role-based permissions, least-privilege defaults, mandatory MFA for staff, and short-lived access tokens.

Continuous Monitoring

Centralized logging, anomaly detection, and automated alerting cover infrastructure and application layers.

Privacy by Design

Data minimization, purpose limitation, and tenant isolation are core to every feature we ship.

Resilience & Recovery

Daily encrypted backups, multi-zone redundancy, and tested disaster-recovery procedures.

How We Operate

Concrete practices we follow every day.

Application Security

  • Mandatory peer code review for every change.
  • Automated dependency scanning and SAST in CI.
  • Periodic third-party penetration testing.
  • Strict Content Security Policy and modern browser protections.

Data Protection

  • Logical tenant isolation across all data stores.
  • Encrypted backups retained on a rolling schedule.
  • Configurable data retention and account deletion within 90 days.
  • Sub-processors vetted for security and data-protection compliance.

Operational Security

  • MFA enforced for all employee accounts.
  • Role-based access with quarterly access reviews.
  • Endpoint protection on all corporate devices.
  • Documented incident-response and on-call rotation.

Compliance & Privacy

  • Aligned with GDPR principles for data subject rights.
  • Standard contractual clauses for international transfers.
  • Data Processing Addendum (DPA) available for paid customers on request.
  • Privacy Impact Assessments for new sensitive features.

Responsible Disclosure

We welcome reports from security researchers. If you believe you've found a vulnerability, please email security@mkt-strategepro.com with a clear description, reproduction steps, and impact. Please do not exploit, disclose publicly, or test against other users' data while we investigate.

Acknowledgement

We'll confirm receipt within 2 business days.

Triage

We aim to triage and assign severity within 5 business days.

Security questions?

Our team is happy to help with security reviews, DPAs, and questionnaires.

security@mkt-strategepro.com