Security Policy

All services run on ISO 27001-certified cloud infrastructure. Network traffic is encrypted with TLS 1.3. Data at rest is encrypted with AES-256.

Access to production systems is restricted to authorised personnel via MFA-protected bastion hosts. All access is logged and audited.

We conduct quarterly penetration tests and continuously scan dependencies for known CVEs. Critical vulnerabilities are patched within 24 hours.

We maintain a 24/7 incident response capability. Security incidents are escalated immediately to the on-call security team and communicated to affected customers within 72 hours.

To report a security vulnerability, email security@agilentic.ai with details. We commit to acknowledging reports within 48 hours and resolving valid issues within 90 days.