Security
Ensuring the security of your data and operations is a top priority when using Nuclia.
Overview of Security Features
Nuclia incorporates multiple layers of security to protect your data and ensure compliance with industry standards. The following sections outline the key security features:
1. Data Encryption
At Rest
All data stored within Nuclia is encrypted using Advanced Encryption Standard (AES-256). This ensures that your data remains secure even if physical security is compromised.
In Transit
Data transmitted between your systems and Nuclia servers is encrypted using Transport Layer Security (TLS) protocols. This prevents interception and tampering during data transfer.
2. Access Control
Role-Based Access Control (RBAC): Nuclia supports role-based access control, enabling you to define roles and permissions for different users. This ensures that only authorized users can access sensitive information and functionalities.
Account Level Roles:
- Owner: Full administrative access, including managing users and settings.
- Member: Limited access, primarily for using the system without administrative privileges.
Knowledge Box Level Roles:
- Manager: Full control over the Knowledge Box, including managing content and users.
- Writer: Permission to add and modify content within the Knowledge Box.
- Reader: Read-only access to view content within the Knowledge Box.
3. Compliance and Certifications
Nuclia adheres to various industry standards and regulations to ensure the highest level of security and compliance, including:
- GDPR (General Data Protection Regulation)
- HIPAA (Health Insurance Portability and Accountability Act)
- SOC 2 (System and Organization Controls)
- ISO 27001: An international standard for managing information security.
4. Regular Security Audits
Nuclia undergoes regular security audits and assessments by third-party security experts. These audits help identify and mitigate potential vulnerabilities, ensuring that our security measures are up-to-date and effective.