ApplyUnis Comprehensively Safeguards Every Trust
Data security is the lifeline of ApplyUnis. We prioritize customer data security as our top priority,
Protecting customer data security is the fundamental principle of ApplyUnis and the cornerstone of mutual trust between ApplyUnis and our customers
Protecting customer data security is the fundamental principle of ApplyUnis and the cornerstone of mutual trust between ApplyUnis and our customers
Partnership Begins with Trust, Security Above All
Your Data Won't Be Lost
ApplyUnis data centers are located in Shanghai and Hangzhou. Business databases have regular snapshots and backups, with data stored in three locations with dual backup mechanism: primary storage on Alibaba Cloud, backup on Huawei Cloud. The company has also deployed backup execution monitoring mechanisms to ensure data backup integrity and regularly conducts backup data recovery tests.
Your Data is Only Accessible to You
ApplyUnis configures separate security keys for each customer, and customers can also choose self-managed key solutions. Keys are used to encrypt customer data, ensuring data is encrypted before storage. Not only is data isolated between customers, but ApplyUnis internal staff cannot access customer data. If you need our assistance to configure your system, you need to authorize us to add authorized accounts to your system.
Your Data Security is Guaranteed
For data collection, transmission, and storage processes, ApplyUnis has equipped rigorous security protection and management solutions at each stage, covering multiple encryption measures and full-process monitoring, detecting anomalies and handling them immediately to ensure data security throughout its lifecycle. Core sensitive data is encrypted using AES advanced encryption algorithm, and we also sign confidentiality agreements with every institutional client.
ApplyUnis Security Compliance System
By building a comprehensive security defense-in-depth system, combined with top-tier security services and operations, security becomes a natural attribute of ApplyUnis. Through product solutions and service capabilities in three modules: security, compliance, and privacy, we build a powerful and comprehensive security compliance system to help enterprise security administrators implement enterprise security management systems and assist customers in meeting dynamically changing data compliance requirements.
Multiple Security Measures to Fully Protect Your Data Security
Powerful Product Security Features | Trustworthy Infrastructure Security Architecture | Efficient, Reliable Security Development and Operations System
Account Security
Supports integration with enterprise existing identity platforms through standard protocols for SSO single sign-on, inheriting enterprise existing account security policies and standards, and also supports direct identity authentication with two-factor authentication to enhance account security
Physical Security
Adopting high-level physical security standards to build ApplyUnis exclusive data centers, powerful and stable performance
Security Development Lifecycle Management
Building a comprehensive SDLC (Software Security Development Lifecycle) management process, with security and compliance assessments and risk automation discovery at each stage, combined with red-blue team exercises in the attack-defense laboratory to ensure issue closure and protect user data privacy
Member Permissions
Providing flexible permission control methods to help administrators grant organizational members minimum necessary permissions, avoiding information leakage caused by improper permission configuration, and improving enterprise security posture
Infrastructure Security
Through baseline detection, vulnerability scanning, intrusion detection, container security, service isolation, and zero-trust access mechanisms, ensuring 24/7 secure operation of ApplyUnis business.
Vulnerability Operations
Through vulnerability management processes, timely and comprehensively discover and follow up on vulnerabilities to ensure the confidentiality, security, and availability of ApplyUnis system resources. Building a complete threat intelligence system to timely perceive external threats and ensure default built-in security capabilities remain at a high level
Data Protection
For core data flow scenarios, providing data leakage prevention capabilities; for screenshot leakage risks, providing screen watermarks. Helping enterprises better manage information security risks
Network Security
Based on Alibaba Cloud and Huawei Cloud network device clusters, independent networking with mutual isolation, multi-active deployment with device-level disaster recovery, and equipped with powerful gateway and access control mechanisms, encrypting communication transmission, combined with cloud security to resist external intrusion and hijacking
Standard Development and Release Process
ApplyUnis adopts Internet-standard development and release processes, divided into intranet, pre-production, and production environments. Feature development and release need to pass acceptance in intranet and pre-production environments sequentially.
Access Security
Following the zero-trust "always verify" principle, continuously verifying user access requests based on personnel, network, device and other conditions. Enterprises can restrict members to access resources only in specific environments, effectively reducing information leakage risks.
Data Security
Having complete data lifecycle security management, from data creation, storage, transmission, access to destruction, with clear processes and technical guarantees, providing flexible key solutions to protect user data security.
Emergency Response
ApplyUnis has established an emergency response team with standard emergency response processes for all security incidents. Based on alerts, feedback, intelligence and other clues, we pre-determine and qualify all security incidents and respond and handle them immediately to ensure normal and continuous operation of user business.
Endpoint Security
Considering the rapid growth of mobile office and BYOD needs, ApplyUnis provides lightweight endpoint management capabilities, including mobile file encryption, paste protection, etc., to ensure ApplyUnis assets cannot be transferred to user terminals.
Application Security
Identity recognition and permission control system security capabilities, combined with powerful cloud security technology, ensuring the operation and production security of ApplyUnis client and server
Flexible Deployment Models
ApplyUnis supports both public cloud SaaS rental and independent deployment for medium and large institutions, fully meeting the needs of different types of institutions
ApplyUnis Trust Commitment
@2x.png)
Data Under Your Control
Whether data is in storage, computation, or transmission, you can verify its confidentiality and integrity at any time
@2x.png)
Powerful Integrated Security
We ensure cloud platform security and provide security capabilities to cloud customers, assisting in building full-environment security
备份@2x.png)
Continuous Industry Security Practices
Using our own experience and serving millions of users, we deliver high-trust best practices to all users
@2x.png)
Joint Event Impact Tracing
Verify cloud security and compliance, and work with customers to trace and resolve operations that may cause problems
@2x.png)
Customer Needs High Priority
We will wholeheartedly cooperate with customers and regulatory agencies, treating user security, privacy, and compliance as our lifeline
ApplyUnis
ISO27001 Information Security Management System Certified
ISO27001 is the most widely recognized information security management standard. Organizations follow this standard to ensure data asset security
Implementing ISO27001 demonstrates our commitment to maintaining user information security at all organizational levels
Implementing ISO27001 demonstrates our commitment to maintaining user information security at all organizational levels
ApplyUnis Internal Security Policies are governed by ISO27001, key points include:
- All access to production data is strictly controlled and restricted
- Physical access to laptops and servers is monitored and controlled
- Passwords maintain high security standards
- All devices accessing our systems are scanned for malware and centrally managed
- All users receive necessary security training annually
- Our security incident response team is on 24/7 standby, with routine weekly meetings to review security status
- We remain vigilant against new security threats, monitoring reported major violations and vulnerabilities to understand their potential impact on operations
