trust
Greenomy is committed to protecting, securing, and controlling the data of all stakeholders and clients who are part of its infrastructure.
compliance
Greenomy adheres to the highest standards of data protection and privacy. As such, we are actively within an ISO 27001 and SOC 2 program. We strictly align with EU GDPR standards and are regularly audited both internally and externally. The Greenomy Trust Portal is the go-to destination for all IT Security-related information. In one well-designed space, the most up-to-date documents can be found including ISO certifications, pentest reports, security policies and much more.
GDPR
Data protection and data subject rights for EU residents.
SOC2
Security, availability, and confidentiality trust services criteria.
ISO/IEC 27001
Information security management systems.
ISO/IEC 27701
Privacy Management System
security
At Greenomy, we handle sensitive data of companies for whom data confidentiality is critical. Therefore we are committed to providing a high level of security to protect your business information.
Infrastructure
The Greenomy platform resides on the Azure Coud hosted in Microsoft data centers located mainly in the Netherlands, and comply with international norms and standards for security, availability and reliability.
Data Encryption
Greenomy encrypts your data to ensure its alignment with the standards tested and accepted by the industry. We use TLS 1.3 to encrypt network traffic between users' browsers and the Greenomy portals. We also use AES-256 bit encryption to secure your database connection credentials and data stored at rest.
Control
To maintain and demonstrate a high level of security, we perform an external third-party penetration test at least once per year. Additionally, we perform continuous auditing as part of ISO 27001 and SOC2.
Operational Security
All Greenomy employees perform security awareness training and are subject to regular testing and training exercises. Additionally, our information security controls are aligned with international standards such as ISO 27001 and SOC 2.
privacy
Data ownership and data privacy are at the core of the Greenomy platform. You own your data, and Greenomy’s granular access controls ensure that you can assign access-rights as you require.
Data Residency
Greenomy data centres are located in Europe (Amsterdam, The Netherlands and Paris, France) to ensure European customers keep control over the data.
Data Governance
Greenomy allows customers to choose who they want to share their ESG data inside the platform with.
Access Management
Greenomy offers highly granular access controls, providing the ability to define distinguished access rights between users over the portal.
Personnal Data Protection
Greenomy is aligned with the EU GDPR. If you want to exercise your rights as a data subject, please contact our Data Protection Officer (DPO) privacy@greenomy.io.
greenomy