Capantra
Legal PolicyAU · UK · US

Security Policy

Describes Capantra security principles and controls used to protect the platform, customer data, and operations.

Request a briefing/demoLegal index
Governance-first posture

We design for review-readiness: clear documentation, versioned policies, and operational controls.

Explore Trust Center
Policy ID
legal-security
Last updated
31-12-2025
Version
v0.2
Category
Legal

1. Security Principles

  • Least privilege access.
  • Defence-in-depth controls.
  • Secure-by-default architecture.
  • Incident preparedness and response.

2. Controls

  • Encryption in transit (TLS) and at rest where applicable.
  • Role-based access controls and audit logs.
  • Monitoring and alerting for abnormal usage patterns.
  • Dependency and patch management.

3. Incident Response

Capantra maintains incident handling procedures and notifies customers where required by law or contract when customer data is impacted.

Versioning & change log

v0.2 · 31-12-2025
  • Added enterprise procurement summary structure.
  • Added change log and versioning.
  • Clarified AU/US/EU scope and responsibilities.
v0.1 · 31-12-2025
  • Initial publication of Security Policy.

Policies may be updated for regulatory, security, or product reasons. Material changes are communicated where required.

Policy notice

This policy is provided for transparency and procurement support and does not constitute legal advice.

Security: security@capantra.com

Contact legal team Trust Center