Datomime

Operational simulation · synthetic scenarios

Request demoSign inStart free trial

Security

Last updated: April 17, 2026 · Product: Datomime

Security program

We design Datomime for enterprise-style expectations: least-privilege access for operators, change management for production deployments, and dependency patching aligned with the severity of disclosed vulnerabilities. Exact controls depend on your deployment model (shared cloud vs. customer VPC); enterprise agreements can document additional attestations.

Encryption and network security

Data in transit should be protected with modern TLS configurations. Customer-managed keys may be supported depending on deployment. Internal service communication should stay within private networks where the architecture allows.

Authentication

Hosted deployments may integrate with your organization's identity provider for federated login (for example Google) and password flows. Administrators should enforce MFA for privileged roles where available.

Logging, monitoring, and audit

The product surfaces audit-oriented events for generation and export activities where enabled. Security teams should forward application logs to their SIEM and tune alerts for anomalous access patterns.

Vulnerability disclosure

If you believe you have found a security vulnerability, email admin@mploychek.com with reproduction steps. Please allow reasonable time for investigation before public disclosure.

Incident response

We maintain an operational incident process for production-impacting issues. Target initial triage for critical issues is within 24 hours for supported enterprise deployments; community or trial tiers may follow best-effort timelines.

Customer responsibilities

Customers should classify datasets before upload, rotate API keys, restrict admin roles, and validate synthetic outputs before downstream use. Security is shared: configuration mistakes or misuse of exports can undermine otherwise sound controls.

This page summarizes intended practices; it is not an ISO 27001 certificate. Attach SOC2/ISO reports and penetration-test summaries under NDA in enterprise deals as needed.