Skip to main content
Sanad

Trust by design

Data security and sovereignty

We treat data privacy as a fundamental right. We design client analytics deployments for in-country servers, with client data isolated from foreign surveillance and external legal interference.

1. Governance & access control

We design least-privilege access, role-based access control, and multi-factor authentication.

2. Encryption

We design encryption around TLS in transit and AES-256 at rest, with advanced privacy technologies where appropriate.

3. Pipeline hardening

We design data pipelines with network isolation, input validation, and software-dependency scanning.

4. Continuous auditing

We design event logging around immutable records, with anomaly checks to identify unusual behavior.

5. Compliance & ethics

We design bounded data-retention policies and include model reviews for bias.

6. Data sovereignty

We design client deployments on in-country servers with an in-country team, physical security, power redundancy, access management, and alignment with Syrian Privacy Controls & Rights Law No. 12 of 2024.