Book a demo
Account Verification
Advisory Services
Book a demo

Security at Kreditz

At Kreditz, security is more than a feature — it’s the foundation of our platform. Because our next-generation risk and credit scoring solutions are central to our customers’ operations, protecting their data and maintaining trust are at the heart of everything we do.
Jump to a topic
Governance
Security Compliance
Data Protection
Product Security
Vulnerability Management
Penetration Testing
People

Governance

Our dedicated Security team defines clear policies and controls to ensure compliance across our organization.

We continuously verify our security posture through internal monitoring and independent third-party audits.

 

Security Compliance

Kreditz maintains an Information Security Management System (ISMS) aligned with ISO 27001:2022, and we comply with both:

  • DORA – Digital Operational Resilience Act (Regulation (EU) 2022/2554)
  • GDPR – General Data Protection Regulation (Regulation (EU) 2016/679)

We are actively pursuing official ISO 27001:2022 certification to further demonstrate our commitment to best-in-class security.

 

Data Protection

We protect all customer data by default, encrypting both at rest and in transit:

  • In transit – TLS 1.2+
  • At rest – AES-256, using AWS Key Management Service (KMS)

This encryption applies across all our products, including databases and object storage (e.g., Amazon S3).

 

Product Security

Vulnerability Management

Security is built into our Secure Development Lifecycle (SDLC), including:

  • Software Composition Analysis (SCA) to detect vulnerabilities in dependencies. 
  • Static Application Security Testing (SAST) during pull requests and ongoing reviews. 
  • Dynamic Application Security Testing (DAST) for running applications. 

Penetration Testing

Our APIs, web application, and cloud infrastructure undergo annual independent penetration testing by certified security firms.

 

People

We believe security starts with our people.

Our onboarding process includes background checks, reference checks, and policy acceptance for all employees.

We also provide comprehensive security training during onboarding and throughout employment.

Engineering teams receive specialized secure coding training to ensure best practices are followed from the start.

Talk To Us

Ready to upgrade your credit decisioning process? Let’s explore how we can work together.

Message