SECURITY

Shipeace Security Features

CSA
Level 1 Star
ISO 27001
Certified
Advanced Encryption
Google Cloud uses industry-standard encryption (AES-256) for data at rest and in transit, securing sensitive information throughout its lifecycle. This encryption ensures that logistics data, whether in storage or transit, remains secure and tamper-proof.
Identity and Access Management (IAM)
Google Cloud provides sophisticated IAM tools, enforcing strict access control over resources. With multi-factor authentication and role-based access, only authorized users can access sensitive data, reducing the risk of unauthorized exposure.
Compliance Certifications
Google Cloud holds certifications such as ISO 27001, SOC 2, and SOC 3, which ensure a high standard of data security, privacy, and operational reliability.
Real-Time Threat Detection
Utilizing tools like Google Cloud Security Command Center, Shipeace benefits from continuous monitoring for vulnerabilities, enabling proactive detection and response to security threats, a critical element in maintaining data integrity.

Shipeace Security Measures

In addition to Google Cloud’s infrastructure, Logipeace has implemented rigorous security practices tailored to the logistics industry’s specific requirements, further supporting Singapore PDPC compliance:

CSA STAR Level 1 Certification
Logipeace holds the Cloud Security Alliance’s (CSA) STAR Level 1 certification, signifying adherence to stringent cloud security protocols. This certification attests to our commitment to transparency, security assurance, and effective risk management practices, assuring customers of our dedication to maintaining a trusted, secure platform.
Comprehensive Data Encryption
Beyond Google Cloud’s encryption, Logipeace uses additional security layers to encrypt sensitive data during internal processing. This ensures that even in cases of internal data handling, information remains protected against unauthorized access.
Data Collection Minimization and Retention Policies
Logipeace ensures that only essential data is collected and retained, aligning with PDPC’s requirements for data minimization and purpose limitation. This helps reduce the volume of sensitive data, minimizing potential exposure.
Incident Response and Recovery
Logipeace has an incident response team in place, with defined protocols for rapid response to security breaches, including containment, mitigation, and data recovery. This proactive approach ensures business continuity and compliance with PDPC’s data breach notification obligations.
User Consent Management
Logipeace follows PDPC guidelines for transparent data processing, with consent mechanisms for users to control their data. This process ensures that users are informed and have control over how their data is handled.
Data Sovereignty and Access Auditing
Logipeace maintains data residency options for region-specific storage and enforces stringent audit controls to monitor and log access. This approach ensures compliance with PDPC’s requirement for data integrity, transparency, and protection of Singapore-based users' data.