Start your security review

View & download sensitive information Ask for information Request Access

Overview

Welcome to KABi's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this portal to learn about our security posture and request access to our security documentation.

Compliance

View All

CSA STAR

GDPR

SOC 2

ISO 27001

ISO 9001

All Documents

Pentest Report

CAIQ

Network Diagram

CSA STAR

Request Access to Private Documents

Risk Profile

View All

Data Access Level

Public

Impact Level

Substantial

Recovery Time Objective

24 hours

Product Security

Multi-Factor Authentication

Role-Based Access Control

Service-Level Agreement

Reports

Network Diagram

Pentest Report

SOC 2 Report

Self-Assessments

CAIQ

Data Security

View All

Access Monitoring

Backups Enabled

Encryption-at-rest

App Security

SBOM

Legal

View All

Subprocessors

Customer Audit Rights

Data Privacy

Employee Privacy Training

Access Control

Data Access

Password Security

Infrastructure

View All

Amazon Web Services

Anti-DDoS

BC/DR

Endpoint Security

Disk Encryption

Network Security

Firewall

Traffic Filtering

Corporate Security

View All

HR Security

Internal Assessments

Internal SSO

Policies

View All

Acceptable Use Policy

Access Control Policy

Asset Management Policy

Security Grades

Qualys SSL Labs

HYRDD Bahrain

A+

HYRDD - Jeddah

A+

Inviews

A+

CSA STAR

Auditor

Self-assessment

We regularly perform self-assessments according to the the Consensus Assessment Initiative Questionnaire (CAIQ). Request Access

GDPR

Auditor

Elias Neocleous & Co LLC

We comply with the European Union’s General Data Protection Regulation, which governs data protection and privacy for all individuals citizens of the European Union and the European Economic Area. We underwent a GDPR attestation audit as a form of external party assurance for data privacy.

SOC 2

Auditor

TAG Global

KABi underwent a SOC 2 Type II audit over the period from January 1st, 2023 until October 31st, 2023 and attained an attestation report from TAG Global. Request Access

ISO 27001

In Progress

ISO 27001

In Progress

Data Access Level

As a SaaS vendor selling to an enterprise customer, what type of data do you need access to?

Public (i.e. information may be shared with anyone or publicly accessible)

Impact Level

What is the potential impact to your enterprise customer if the data and/or functionality you, as the vendor, are supposed to manage, is compromised?

Substantial

Recovery Time Objective

What is your recovery time objective in case of critical failure? (e.g., your DB is deleted)

24 hours

Recovery Point Objective

What is your recovery point objective in case of critical failure? (e.g., your DB is deleted)

24 hours

Critical Dependence

Will your product be a system that your enterprise customer critically depends on? (i.e., a failure would cost them a ton of money)

Yes

Third Party Dependence

Are you also using other third-party services to manage or support your customers?

Hosting

Are you hosted only on one of the major cloud providers or do you have any on-premise systems?

Major Cloud Provider (e.g., AWS, Azure, GCP, Salesforce, or Digital Ocean)

Acceptable Use Policy

Request Access

Access Control Policy

Request Access

Asset Management Policy

Request Access

Backup Policy

Request Access

Business Continuity Policy

Request Access

Data Classification Policy

Request Access

Data Security Policy

Subprocessors

Company	Location	Additional Details
Amazon AWS	Bahrain	Cloud Provider
Oracle	Jeddah	Jeddah
Github	EU	Software Version Control
Slack	EU	Team Communication
Attlassian	EU	Product and task management tool

Customer Audit Rights

Customers are able to audit our security protocols with penetration and vulnerability tests as long as we are notified a week in advance and the proper procedures and protocols have been adhered to.

Our Privacy Policy ensures the protection and confidentiality of user data, outlining how information is collected, used, and shared in accordance with applicable laws and regulations.

HYRDD

AI-Powered Applicant Tracking System

INVIEWS

AI-powered Psychometric Video Assessments

HC CONSULTING

Human Capital Consulting-as-a-Service

Start your security review

Overview