PulsitySecurity Overview
Pulsity is built on enterprise-grade infrastructure with security controls designed for consulting firms handling sensitive engagement data.
Infrastructure
- Cloud Provider
- Microsoft Azure
- Region
- Australia East (Sydney)
- Data Sovereignty
- All data stays in Australia
- Backups
- Daily encrypted, geo-redundant
Encryption
- In Transit
- TLS 1.2+ (HTTPS enforced)
- At Rest
- AES-256 (Azure-managed keys)
- Database
- Transparent Data Encryption
- Backups
- Encrypted at rest
Authentication & Access
- SSO
- Microsoft Entra ID (Azure AD)
- MFA
- Supported via SSO provider
- Access Control
- Role-based with engagement-level permissions
- Session Management
- Configurable timeout, secure cookies
Compliance
- Framework
- SOC 2 Type II (via Azure)
- Privacy
- Privacy Act 1988 (Cth) compliant
- Data Breach
- Notifiable Data Breaches scheme
- Retention
- Configurable per customer agreement
Application Security
- Testing
- 1,200+ automated tests
- Dependencies
- Automated vulnerability scanning
- Code Review
- All changes reviewed before deployment
- Monitoring
- Real-time error tracking and alerting
Incident Response
- Notification
- Within 72 hours of confirmed breach
- Escalation
- Documented runbook with defined roles
- Communication
- Direct notification to affected customers
- Post-Incident
- Root cause analysis and remediation plan
Need more detail?
We're happy to complete your security questionnaire or provide additional documentation.