Moveo.one logomoveo

Security & Trust

Built in compliance. Certified soon.

We design Moveo One to meet the bar enterprise security teams expect — encryption, access control, hosting choice, and a documented security program. We're early, so formal certifications are in progress. Here's exactly where we stand today.

Where we are today

Practices already in production for every customer.

Encryption everywhere

TLS 1.2+ in transit. AES-256 at rest. Secrets and keys managed with strict rotation policies.

Access control & MFA

Role-based access control across all internal systems. MFA enforced for every team member with access to production.

EU and US hosting

Choose where your data lives. EU-resident or US-resident infrastructure available — your data stays in your chosen region.

Flexible deployment

Managed multi-tenant, dedicated single-tenant environment, or fully on-premise inside your own cloud. Your perimeter, your rules.

Internal security policy

Documented security policy covering access, incident response, vendor review, backups, and employee onboarding/offboarding.

Privacy by design

GDPR-aligned: DPA available on request, data export and deletion supported, no sale of personal data.

Compliance roadmap

Honest status. We will not claim a certification we don't hold.

SOC 2 Type II

In preparation

Controls and policies aligned. Audit targeted later this year.

ISO 27001

In preparation

ISMS scoping underway. Certification targeted in 2027.

GDPR

Aligned today

Practices in place; formal DPIA documentation in progress for enterprise customers.

HIPAA

On roadmap

BAA and HIPAA-aligned configuration available for healthcare deployments under evaluation.

Hosting & deployment options

Managed cloud

Fastest setup. EU or US region of your choice. Operated and monitored by us.

Dedicated environment

Single-tenant infrastructure isolated from other customers. Your VPC equivalent, our operations.

On-premise

Deploy inside your own cloud account or data center. Data never leaves your perimeter.

Need details for your security review?

We're happy to share our current security questionnaire (CAIQ-Lite / SIG-Lite), DPA, architecture overview, and roadmap timeline. Enterprise customers can also request a call with our team to walk through controls.

Request security packContact us

Last updated: April 2026. This page reflects our current security posture and compliance status. We update it as certifications progress.