H
Helix

Helix Trust Center

Helix is in compliance with security best practices, has implemented and is monitoring comprehensive controls, and maintains policies to outline its security procedures.

chris@helix.ml

Compliance

Links

Privacy PolicyTerms of Service

Resources

ISO 27001 Certificate
Baseline Hardening Policy
Business Impact Assessment Policy
Incident Response Policy
Information Security Management System Manual

Controls

Source code access restricted and changes logged
Access control procedures
Quarterly user access reviews performed
Termination Access Revocation Checklist
Access Segmentation Between Customers and Environments
Data encrypted at rest
Customer data deleted after termination
Backup and recovery policy
Secure connection means utilized
Web application firewalls configuration
External Attack Surface Vulnerability Scanning & Remediation
Outsourced development security requirements managed
Code of Conduct acknowledged by employees
Anti-malware monitoring
Intrusion detection tool
SSL/TLS certificates for infrastructure
Monitoring, measurement, analysis and evaluation
Automated system capacity and performance monitoring
Business continuity & disaster recovery plans documented and tested
Security incident logging and review
Breach notification communication
Visitor sign-in, badging, and escort policy
Technology assets inventoried
Documented Vendor Management Program
Vendor termination
Vendor list
Vendor onboarding
Confidentiality Agreement acknowledged by employees
Employee handbook
List of newly hired employees & contractors
Security awareness training implemented
Background checks performed on employees
Multi-availability zones
Asset register maintaining
Whisteblower mechanism maintained
Documentation available to internal and external users
Customer support channels available
Risk and Governance Executive Committee meeting minutes
Risk management program
Patch management process developed
Production system hardening and baseline configuration management
Information security policies and procedures
Mobile Device Management (MDM) and BYOT
Key management services used