Category
Control Title
Description
Access Controls
Application level RBAC
Users within the RedactXpert application are assigned roles that define their access to features, ensuring least-privilege access to tenant data and operations.
Access Controls
Tenant level data access controls
Tenant boundaries within the application ensure users can only interact with resources belonging to their own organisation. Tenant context is validated on all operations.
Access Controls
Just-in-time platform access
Elevated privileges require JIT activation via PIM to minimise standing administrative permissions
Access Controls
Approval process for privileged platform roles
Requests for privileged roles must be approved by designated approvers before access is granted, ensuring strict segregation of duties.
Access Controls
Use of password-less credentials
Interactions between platform components are performed with password-less managed service accounts.
AI Security
Customer data is never used for AI model training
Customer data uploaded to the solution is never used to train AI models.
AI Security
Opt-out of AI logging
Sensitive data is not stored on AI services, other than for the purposes of processing. In particular, configuration options are used to explicitly opt-out of logging data processed by AI when detecting personally identifiable information (PII).
Application Security
Web-application firewall
WAF implemented to inspect and block malicious traffic, using OWASP 3.2 and Bot Protection.
Application Security
Code review processes
All code changes must be reviewed and approved via pull requests, preventing unauthorised code changes.
Application Security
SAST tooling
Static analysis security testing (SAST) is run during CI to detect insecure coding practices and vulnerabilities before code is deployed.
Application Security
Secure credential management (use of key vault)
All secrets (keys, certificates, connection strings) are stored in Azure Key Vault and never committed to code or stored on developer machines. Access to secrets is tightly controlled and audited.
Application Security
CI/CD Pipelines
Automated pipelines are used for code build, testing, validation, and deployment to ensure consistent, repeatable, and secure development processes.
Application Security
Production deployment approvals
All deployments to the production environment must have an approval from specified team members to protect the integrity, security, and availability of the production environment.
Business Continuity & Disaster Recovery
Immutable backups
Immutable, isolated backups protect against ransomware by ensuring data cannot be modified, encrypted, or deleted by attackers, even with elevated privileges.
Business Continuity & Disaster Recovery
Business Continuity & Disaster Recovery Plan
RedactXpert has a documented Business Continuity & Disaster Recovery Plan that outlines mechanisms in place to protect against disruption to the service, and how to respond in the event of many disaster scenarios.
Compliance
ISO 27001 Compliance
RedactXpert is certified for ISO 27001 via Simpson Associates.
Compliance
Cyber Essentials Plus Compliance
RedactXpert is certified for Cyber Essentials Plus via Simpson Associates.
Compliance
UK Police-Assured Secure Facilities (PASF)
RedactXpert is built on Microsoft Azure. The NPIRMT completed a comprehensive security assessment of the physical infrastructure of Microsoft Azure datacenters in the UK, and concluded that they're in compliance with NPIRMT requirements. The NPIRMT audits one Azure datacenter each year, annually cycling through the four Microsoft datacenters in the UK.
https://learn.microsoft.com/en-us/azure/compliance/offerings/offering-uk-pasf
Data Security
Tenant data storage isolation
Tenant data for organisations is isolated in unique storage accounts and databases. Enterprise tenants are further isolated with individual database servers.
Data Security
Tenant network isolation
Tenant data for organisations is isolated in per tenant virtual networks
Data Security
Access restrictions to customer data
RedactXpert staff cannot access customer-uploaded data (documents or PII). Access is blocked by design, policy, and technical enforcement.
Encryption
TLS communication
All services communicate using TLS encryption in transit.
Encryption
Sensitive column encryption
Database columns containing PII or other sensitive information are encrypted at the database level and protected with per-tenant RedactXpert managed key pairs.
Encryption
Storage account file encryption
Storage containing uploaded documents uses encryption-at-rest.
Encryption
Secret encryption
Secret configuration values are encrypted at rest and protected from unauthorised access.
Infrastructure Security
Azure cloud configuration review
A review of Azure cloud configuration is performed annually to identify any security vulnerabilities or areas for increased security in the platform.
Infrastructure Security
Private network restrictions
All resources in the solution (except access to the application itself) are protected by a private virtual network. Public access is disabled to resources and only communication internally between resources on the network is allowed.
Infrastructure Security
Environment segregation
Development, test, and production environments are kept separate via distinct subscriptions, credentials, networks, and deployment pipelines.
Infrastructure Security
DDoS Protection
DDoS protection is used to detect and mitigate malicious high-volume traffic to prevent service disruption and ensure system availability.
Operational Security
Staff Vetting
All staff with access to the RedactXpert application and platform are vetted in line with the customer (and internal) vetting requirements.
Operational Security
Access Reviews
Periodic verification of user permissions to ensure access remains appropriate to job roles and to promptly remove excessive or outdated privileges.
Operational Security
Joiners Movers Leavers Process
Formal onboarding, role-change, and off-boarding procedures to provision access securely, adjust permissions as responsibilities change, and revoke access immediately when individuals leave the organisation.
Vulnerability Management
Penetration testing
Annual penetration testing of the application is performed by a 3rd party to identify security vulnerabilities.
Vulnerability Management
Automated dependency scanning
Dependencies are scanned for security vulnerabilities and licence issues automatically as part of CI/CD and via scheduled scans.
Vulnerability Management
SIEM Monitoring
Centralised logging and real-time analysis of security events to detect, and respond to suspicious or unauthorised activity across systems and user accounts.
