Security is fundamental to us. SOC2 compliance, periodic third-party penetration testing exercises, modern state of the art cryptography - we do things the right way.
We know first hand that poor authentication security leads to account theft, data breaches, monetary losses, loss of trust, and reputation damage. What is more, a poor user experience related to authentication inevitably leads to suboptimal behavior and bad practices, which cause security incidents. Therefore, our primary goal is to make idemeum's Passwordless MFA secure without sacrificing user experience.
|SOC2 Type 1
|SOC2 Type 2
All areas of the idemeum product and cloud infrastructure are in-scope for periodic penetration testing exercises, and source code is fully available to the testers in order to maximize the effectiveness and coverage.
Report a security incident
To make a security vulnerability report, fill out the form. Share as many details as possible, including steps to reproduce. We are deeply grateful to researchers who report issues so that we can address them immediately.