Security and Compliance You Can Trust
PPAD is designed to help organisations safeguard sensitive documents and meet compliance requirements with confidence. Documents remain protected even after download, with controls that support secure access, traceability, and regulatory oversight.
ISO 27001 certified
Digify is ISO 27001 certified.
ISO/IEC 27001:2022 is widely considered the gold standard in information security management systems.
This certification assures that we have:
- Implemented an information security management system for service development, operations, and support.
- Implemented data security protocols covering everything from data security to physical and network security.
- Put controls in place to protect and safeguard customer data.
- Comply with business, legal, contractual and regulatory requirements.
- Implemented an in-depth information security risk management program.
As part of our ISO27001 certification requirements, annual compliance audits and security penetration tests are conducted on our systems.
Advanced file encryption
PPAD ensures the integrity and confidentiality of your files with encryption in transit and at rest.
We use AES-256 Encryption algorithm to encrypt your files. Your PPAD sessions are always protected with top-end in-transit encryption, advanced TLS protocols, and 2,048-bit keys. AES-256 Encryption is certified by NSA to protect Top-Secret information.
PPAD uses Envelope Encryption which encrypts your data with a data key, and then encrypts the data key with a master key. This encryption scheme offers the best combination of speed and security for encryption, by leveraging on both symmetric key algorithms (high speed) and public key algorithms (separation of roles). The encryption keys are stored in a secure AWS Key Management System (KMS). Encryption and decryption of file keys happen in Hardware Security Modules (HSM) in the KMS. The KMS is certified for FIPS-2 level of security.
Retain control of confidential documents
Customer data is hosted on Amazon Web Services data centers globally, with reliable power sources and backup systems that offer 99.9% SLAs and redundancy. AWS’ infrastructure is widely considered to be highly secure, and is certified for many standards including SOC 2, ISO 27001, PCI DSS Level 1, Fedramp, FIPS and is fully audited. AWS maintains facilities secured against electronic and physical intrusion.