Security
THRPY is built with security as a core principle. Learn about our security measures and compliance.
End-to-End Encryption
All data is encrypted in transit and at rest using AES-256-GCM encryption.
Active
PII Encryption
Personally Identifiable Information is encrypted at the field level with AES-256-GCM.
Active
Access Control
Role-based access control ensures users only access authorized resources.
Active
Audit Logging
All access to sensitive data is logged and monitored for security compliance.
Active
Compliance & Certifications
Industry standards and regulatory compliance
- GDPR Compliant
- HIPAA Compliant
- NHS Data Standards
- SOC 2 Type II
- ISO 27001
Security Practices
How we protect your data
- Regular security audits and penetration testing
- Automated security scanning in CI/CD pipeline
- Encrypted database connections
- Secure session management
- Rate limiting on all API endpoints
- CSRF protection on all forms
- Input validation and sanitization
- Security headers on all responses