Security Principles & Commitments
Your security is our top priority. Wiser is SOC2 Type 2 compliance and enforces secure engineering and business practices to ensure our customers' security comes first. Wiser does not train machine learning models on customer data.
Last updated 15th, April 2024.
Organizational Security Overview
We follow strict best practices on information security and third-party audits.
Cloud Security Overview
We operate on public cloud infrastructure and have active security measures in place to ensure the safety & security of systems.
Access Security Overview
We strongly believe and adhere to the principle of least privilege.
Vendor and Risk Management
When working with 3rd-party vendors, we work to mitigate risks.
Organizational Security Practices
We have an Information Security Program in place that is communicated throughout the organization. Our Information Security Program follows the criteria set forth by the SOC 2 Framework. SOC 2 is a widely known information security auditing procedure created by the American Institute of Certified Public Accountants. Wiser is currently undergoing our SOC2 Type 1 and SOC2 Type 2.
Cloud Security Practices
All of our services are hosted with Google Cloud Platform (GCP). They employ a robust security program with multiple certifications. For more information on our provider’s security processes, please visit GCP Security.
Access Security Practices
Access to cloud infrastructure and other sensitive tools are limited to authorized employees who require it for their role. Where available we have 2-factor authentication (2FA) and strong password policies to ensure access to cloud services are protected.
Vendor and Risk Management
At least once per year, we undergo risk assessments to identify any potential threats. All vendors are reviewed at least annually and appropriate vendor reviews are performed prior to authorizing new vendors.
Last updated 15th, April 2024.
