Information Security Policy

Translation for reference. This document is provided as a courtesy English translation. The binding version is the Política de Segurança da Informação in Portuguese. For real-time security controls and certifications, see our Trust Center.

Summary

Linkana is committed to maintaining the confidentiality, integrity and availability of information assets — customer data, the platform itself and supporting infrastructure.

Certifications

Linkana is ISO/IEC 27001 certified. Verify the certification at IAF CertSearch.

Core principles

• Confidentiality: access to information is restricted to authorized parties.
• Integrity: information is accurate, complete and protected against unauthorized changes.
• Availability: information is accessible to authorized users when needed.

Controls

We follow the controls required by ISO/IEC 27001 and best practices for SaaS platforms, including:

• Access management with least privilege
• Encryption of data in transit and at rest
• Continuous monitoring and incident response
• Vendor security assessments
• Periodic security audits and penetration testing
• Security training for all team members

Trust Center

Real-time security controls, sub-processors and audit reports are available at trust.linkana.com.

Contact

For security questions or to report a vulnerability, contact security@linkana.com.

For the complete and binding text in Portuguese, see /politica-de-seguranca-da-informacao/.