PricingSecurityAbout Us
Get Started for FreeSign In

Privacy and Security

Customer trust, information security and data privacy are at the heart of everything we do at OneIQ

Certification and Compliance
OneIQ is ISO/IEC 27001 certified, complies with GDPR, conducts penetration testing and surveillance audits.
Learn more
Application Security
Security is an integral part of our application software and our product development.
Learn more
Infrastructure Security
OneIQ uses cloud infrastructure and suppliers with a strong focus on privacy and security.
Learn more
Organizational Policies
Security is at the heart of how we run our business.
Learn more
Certification and ComplianceISO/IEC 27001GDPRPenetration TestingSurveillance AuditsApplication SecurityAgent-lessSecured CredentialsData EncryptionDigital SignaturesVulnerability DiscoveryInfrastructure SecurityMicrosoft AzureCommunication SecuritySupplier SecurityExtensive LoggingOrganizational PoliciesInformation Security OfficerIncident ManagementSecurity ScreeningSecurity Training2FA and SSOEndpoint Security

certification

Certification and Compliance

ISO/IEC 27001

OneIQ maintains ISO/IEC 27001 Information Security Management certification through the British Standards Institution (BSI), one of the leading certification bodies and original contributors to the ISO/IEC 27001 standard.

GDPR

OneIQ is serious about handling your personal data and is committed to the General Data Protection Regulation (GDPR) (EU) 2016/679. Read our Privacy Policy to learn more.

Penetration Testing

OneIQ conducts application and infrastructure testing annually through a leading security firm, which also works with clients in defense, financial services and public sectors.

Surveillance Audits

Each year OneIQ undergoes ISO/IEC 27001 surveillance audits with BSI to ensure continuous improvements to our information security management system (ISMS).


application-security

Application Security

Agent-less

OneIQ does not deploy agents during data collection to avoid increasing the attack surface on target systems.

Secured Credentials

Passwords entered into the OneIQ Pulse data collector are encrypted using AES-256 and are never displayed in plaintext or transmitted externally.

Data Encryption

OneIQ encrypts inventory and performance data at the point of collection, in-transit and at-rest.

Digital Signatures

OneIQ Pulse data collector is digitally signed to prevent tampering with embedded scripts and software assemblies.

Vulnerability Discovery

OneIQ performs web application and container image scanning to identify and mitigate security vulnerabilities.


infrastructure-security

Infrastructure Security

Microsoft Azure

OneIQ is hosted in the Canada Central (Toronto) region on Microsoft Azure, which provides extensive security capabilities. We use Azure Firewall and secure cloud storage with encryption-at-rest.

Communication Security

Inter-service communication and data transfers are performed over SSL.

Supplier Security

OneIQ has a rigorous onboarding process for new suppliers and conducts annual reviews for existing suppliers to ensure that they have rigorous privacy and security policies in place.

Extensive Logging

OneIQ performs extensive logging to identify and mitigate security risks and vulnerabilities.


organizational-policies

Organizational Policies

Information Security Officer

OneIQ has an Information Security Officer, who is responsible for compliance with the ISO/IEC 27001 standard, continuous improvement to our information security policies and procedures and incident management.

Incident Management

OneIQ has rigorous information security incident management procedures for mitigating security incidents and communicating security events.

Security Screening

New staff must undergo criminal record and employment verification checks before joining OneIQ and all contracts include a confidentiality agreement.

Security Training

All staff must go through security training when they join OneIQ and at least once annually for refresh training.

2FA and SSO

All OneIQ systems have rigorous access controls and require single-sign-on (SSO) with two-factor authentication (2FA).

Endpoint Security

All endpoints used by staff have BitLocker encryption and security scanning software. Staff must use single-sign-on and follow clear-screen policies.

Optimize Hybrid IT

Discover application workloads and the underlying Hybrid IT infrastructure in 15 minutes

Get Started for Free
Help Center
Privacy Policy
Terms of Service
© OneIQ Corp. All rights reserved