Our commitment to security
At Sensirion Connected Solutions, our commitment to security is underscored by our ISO 27001 and ISO 9001 certifications, which demonstrate our adherence to the highest standards in information security and quality management. Our software platform, including its applications, components, infrastructure, and underlying code, is safeguarded by a formalized information security policy designed to meet stringent regulatory and business requirements.
Sensitive and confidential data stored, accessed, or transmitted through our systems are protected by robust measures, including strict access controls. Privileged users are granted access only as required by their roles and are held accountable for their responsibilities related to elevated access. To ensure compliance with legal and contractual obligations, data retention is limited to the duration necessary for its intended purposes unless otherwise mandated.
Network segmentation is employed to prevent unauthorized or direct connections between external networks and our information systems, particularly those housing confidential data in cloud environments. Sensirion Connected Solutions also implements a comprehensive vulnerability management program to uphold the confidentiality, integrity, and availability (CIA) of our critical system resources. This program encompasses internal and external scans, penetration testing, and the remediation of identified vulnerabilities, ensuring continuous monitoring and improvement.
To further enhance security, we conduct independent third-party penetration tests at least annually on systems containing confidential data or those with critical risk ratings. These assessments identify potential vulnerabilities, enabling us to detect, classify, prioritize, remediate, and validate issues effectively.
Sensirion Connected Solutions' certifications and proactive security measures reflect our unwavering dedication to protecting the data entrusted to us.