Security at planix

Introduction

The security of our customers’ data and systems is a top priority for planix. We are fully committed to ensuring the confidentiality, integrity, and availability of all information. This document provides an overview of our security principles and measures implemented to protect your data.

Information Security Management

planix maintains a comprehensive information security management system based on recognized standards such as the requirements of the Swiss Data Protection Act (FADP) as well as – where applicable – the EU General Data Protection Regulation (GDPR). Clear roles, responsibilities, and processes ensure that security considerations are integrated into all areas of our business operations.

Data Protection and Confidentiality

Protecting personal data is at the core of our operations. Access to personal information is strictly regulated and granted only to authorized employees who are bound by confidentiality obligations. We collect and process only the data necessary to deliver our services.

Technical Security Measures

We use modern encryption technologies to protect data during transmission (TLS/SSL) and storage. Access to our systems is secured through multi-level authentication mechanisms. Firewalls, network protection systems, and regular penetration tests help us identify and eliminate potential vulnerabilities. All software development processes at planix follow the principle of “Security by Design.”

Physical and Infrastructure Security

Our systems are hosted in certified data centers that meet the highest security and compliance standards. Physical access to servers is strictly controlled and limited to authorized personnel. The infrastructure is protected against power outages, fire, and other risks. Redundant systems and regular backups ensure continuous operations.

Operational Security

We continuously monitor our systems to detect anomalies at an early stage. Our vulnerability management, patching, and update processes ensure that our software remains up to date at all times. Data is backed up regularly to enable rapid recovery in the event of an incident.

User and Access Security

planix enforces strong password policies and offers multi-factor authentication (MFA). User permissions are assigned based on the principle of least privilege and are reviewed regularly. Sessions are automatically terminated after periods of inactivity to prevent unauthorized access.

Security Incidents and Incident Response

In the event of a security incident, our incident response plan is immediately activated. We analyze incidents without delay, resolve root causes, and – where required – notify affected customers and authorities. Documented recovery processes ensure that systems can be restored quickly.

Training and Awareness

All planix employees receive regular training on data protection, information security, and safe behavior in the digital environment. Promoting strong security awareness is a key element of our company culture.

Audits and Continuous Improvement

planix conducts both internal and external audits to verify the effectiveness of our security measures. Insights gained from risk analyses, audits, and security incidents are continuously used to improve our security management system.

Responsibilities and Contact

For questions or concerns regarding security or data protection, please contact our Security & Privacy Team:
planix / Business Intelligence Schweiz AG
Bahnhofstrasse 10
8001 Zurich