Comprehensive security and compliance

We care about security and compliance as much as you and your customers do.

Providing top-tier security

Tackling today’s security and compliance challenges are critical and we work to provide top-tier security through:

yearly audit icon

Yearly security audits

Ubiquity’s Information Security Process and Policy, Physical Security Process and Policy, and System Access and Security Policy are published and externally audited yearly.

activity data icon

Active-active data centers

Dual active-active data centers, bordering the U.S. East and West Coasts, ensure total redundancy and uptime.

regular training icon

Regular training and testing

All Ubiquity team members undergo regular compliance and data security training and testing, including Bank Secrecy Act and anti-money laundering compliance.

Standards and certifications

PCI-DSS Level 1
SOC 2 Type II
ISO 27001
HIPAA
GDPR
CCPA
Maintains enterprise-wide compliance (including our Work-from-Home Solution) with the Payment Card Industry Data Security Standard (PCI-DSS), which is audited and certified annually by a third party.
Maintains the System and Organization Controls (SOC) standard design for service organizations that hold, store, or process client information.
Aligns policy framework and management systems with International Organization for Standardization (ISO) principles and follows the standards, policies, and processes for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving information security.

Maintains HIPAA compliance with administrative, technical, and physical safeguards designed to protect healthcare information.

Complies with the European Union’s General Data Protection Regulation (GDPR), which regulates how individuals’ data may be used and stored.
Complies with the California Consumer Privacy Act, which regulates how California residents’ data may be used and stored.

PCI-DSS Level 1

Maintains enterprise-wide compliance (including our Work-from-Home Solution) with the Payment Card Industry Data Security Standard (PCI-DSS), which is audited and certified annually by a third party.

SOC 2 Type II

Maintains the System and Organization Controls (SOC) standard design for service organizations that hold, store, or process client information.

ISO 27001

Aligns policy framework and management systems with International Organization for Standardization (ISO) principles and follows the standards, policies, and processes for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving information security.

HIPAA

Maintains HIPAA compliance with administrative, technical, and physical safeguards designed to protect healthcare information.

GDPR

Complies with the European Union’s General Data Protection Regulation (GDPR), which regulates how individuals’ data may be used and stored.

CCPA

Complies with the California Consumer Privacy Act, which regulates how California residents’ data may be used and stored.