Security & Privacy at BuildWithin

BuildWithin software and services provide all the infrastructure necessary to run modern on-the-job training programs. It allows clients to recruit trainees, train them through a series of e-learning modules, track progress, and ensure compliance. The software administrative functions make it easy for our clients to manage recruitment and on-the- job training.

BuildWithin’s information management system is based on the framework outlined in the ISO 27001 standard.  We view application security not as a “one-and-done” set of tasks, but a continual culture of assessment, monitoring and improvement.


Protecting Data



Protecting your data is important to us. All encryption is performed in accordance with industry standards, including NIST SP 800-57. All data is encrypted via a secure TLS 1.2+ encryption protocol. Encryption keys are managed through IAM system users and AWS  Key Management System.

  • All production data is encrypted “at rest” at the database level for all databases using the industry standard AES-256 encryption algorithm.

  • BuildWithin completes penetration tests quarterly.

  • BuildWithin operates on the principle of least privilege and utilizes Role Based Access Control to manage access. Users are only granted the level of access absolutely required to perform their job functions.

A Culture of Learning & Security

All BuildWithin employees and third-parties with access to BuildWithin systems and networks complete security awareness training at the time of hire and annually thereafter.

01

BuildWithin's approach is to include all security related processes in the road map with the same diligence as to the development process.

02

Lorem Ipsum is simply dummy text of the printing and typesetting industry.

Profile name

CEO / Creative IT

Lorem Ipsum is simply dummy text of the printing and typesetting industry.

Profile name

CEO / Creative IT



             *BuildWithin maintains compliance with GDPR and CCPA.