Security concerns

As identity information is sensitive by its nature, we maintain high security standards, which are embedded into our solutions, corporate culture and organisation in its entirety.

OneWelcome strictly adheres to information security best practices, solutions being designed based on the "privacy by design" principle. We are certified under the ISO/IEC 27001 standard for Information Security and handle the trust services criteria of ISAE 3000 - SOC2 type 1 and type 2. OneWelcome is also audited by various independent organisations on an annual basis.

Ritm only stores branded apps' secret in an encrypted format, but does not store users' credentials. What we store, though, is the relationship between identities.

We treat information security with the utmost importance. Therefore we enforce TLS for all communication between all our services and encrypt data at rest by making use of modern encryption algorithms. Additionally, access to compute resources is restricted to authorised personnel only.

Other high security and privacy measures have been implemented and can be communicated under NDA.

Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
  Last updated by Stein Welberg on Jul 18, 2022
Next to read:
System Overview
On This Page
Security concerns