Trust & Compliance
Locus is a global platform used by enterprises in more than 30 countries, supported by a dedicated information security team that safeguards customer data and upholds rigorous international security and privacy standards.
Compliance
C754492
ISO 27001:2022
Locus is certified for ISO 27001:2022, demonstrating a robust Information Security Management System. Certificates are available upon request.
C754493
ISO 27701:2019
Locus is ISO 27701:2019 certified, helping us to demonstrate our capability to protect customer’s personal information.
GDPR Compliant
Locus is fully GDPR compliant, with data protection and privacy practices that meet all regulatory requirements and have been independently validated via a GDPR gap assessment by DNV.
SOC 2 Type II
Locus is SOC 2 Type II compliant, helping us to provide assurance to customers and stakeholders that our organization has implemented and maintains effective controls to protect the data.
SOC 3 Report
Locus has obtained a SOC 3 report, publicly confirming that our controls for security, availability, and confidentiality meet industry standards and reflecting our ongoing commitment to transparency, trust, and customer data protection.
Security Controls
Customer Data Protection
Encryption
AES 256-bit encryption ensures robust protection for data at rest, while TLS 1.2 and HTTPS protocols secure data in transit, mitigating risks of interception and unauthorized access.
Secure Development Lifecycle
Product Planning
Integrates security and privacy requirements into the design phase to ensure compliance and risk mitigation across all lifecycle stages.
Privacy By Design And By Default
Privacy Information Management System
ISO 27701:2019 Certified and have a well established, implemented, monitored and audited Privacy Information Management System. Tracking collection, storage, processing, access, transfer, retention and removal of personal information.