Security & compliance
Built so the compliance review is short.
Every engagement starts from these answers, in plain language. No marketing.
C-01Verified
POPIA compliance
Information Officer registered
C-02Verified
Data residency · SA
Storage, processing, backups in-region
C-03Verified
Zero Data Retention
Contractual with model provider
C-04Verified
PII tokenisation
In-country proxy on every call
C-05Verified
Encryption
AES-256 at rest · TLS 1.2+ in transit
C-06Verified
MFA & access control
RBAC, audit-logged, SAML/OIDC available
The data path.
Identifiable customer, position and deal data follows one route. It does not deviate.
01
Request in
Filings · deck · feeds
02
SA storage
Encrypted at rest
03
Tokenise
PII → tokens
04
Model call
ZDR · no retention
05
Memo out
Detokenised in SA
In-country · ZA
Questions from your compliance team.
Email admin@pallisadedata.com with your vendor due-diligence questionnaire. No portal, no ticket.
Bring compliance to the first call.
We'd rather answer the hard questions before scoping than slow the build down later.
Book a consult