Security

Last updated: March 15, 2025

Our Commitment to Security

At muranai, security is at the core of everything we build. We understand that your data is one of your most valuable assets, and we are committed to implementing the highest standards of security to protect it. Our comprehensive security program is designed to protect the confidentiality, integrity, and availability of your data and our services.

Infrastructure Security

Our infrastructure is built on secure foundations:

  • Physical security controls at all data centers
  • Network security with multiple layers of defense
  • Continuous monitoring and automated threat detection
  • Regular penetration testing and vulnerability assessments
  • Disaster recovery and business continuity planning

Data Protection

We employ multiple layers of data protection:

  • End-to-end encryption for data in transit using TLS 1.2+
  • AES-256 encryption for data at rest
  • Strict access controls based on the principle of least privilege
  • Data isolation between customers
  • Regular security audits and compliance checks

Application Security

Our application development follows security best practices:

  • Secure software development lifecycle (SSDLC)
  • Regular security code reviews
  • Automated security testing integrated into CI/CD pipeline
  • Dependency vulnerability scanning
  • Security training for all developers

Compliance

We maintain compliance with industry standards and regulations:

  • SOC 2 Type II certified
  • GDPR compliant
  • HIPAA compliance for healthcare applications
  • Regular third-party security assessments
  • Comprehensive security documentation and policies

Incident Response

We have a structured approach to incident management:

  • 24/7 monitoring and alert system
  • Dedicated incident response team
  • Documented incident response procedures
  • Regular incident response drills
  • Post-incident analysis and learning

Responsible Disclosure

We value the work of security researchers. If you believe you've found a security vulnerability in our services, we encourage you to report it to us. Please email [email protected] with details of the vulnerability.

We commit to:

  • Acknowledging receipt of your vulnerability report
  • Providing an estimated timeline for a fix
  • Notifying you when the vulnerability is fixed
  • Recognizing your contribution if desired

Contact

For security questions or concerns, please contact our security team:

Email: [email protected]
Address: Paris, France