Legal / Document

Security Policy

Document Reference: BL-SP-2026-001|Version: 1.0|Effective: 11 May 2026

Enterprise Grade Security

Betopia Limited is ISO 22301:2019 and ISO 9001:2015 certified. Our security operations are aligned with ISO 27001 standards.

1. Security Principles

Security is foundational to the Betopia Group. We utilize a multi-layered approach to protect our infrastructure, employee endpoints, and client data.

5. Access Control and Identity

We enforce strict access control based on the principle of Least Privilege.

MFA Mandatory: Required for all administrative and remote access.
Zero Trust: Identity verification required regardless of location.
Access Reviews: User rights reviewed quarterly.

6. Cryptography and Encryption

Data State	Minimum Standard	Application
Data in transit	TLS 1.2 minimum	HTTPS, APIs, Email
Data at rest	AES-256	Databases, Backups

7. Infrastructure Security

Our production environments are protected by Web Application Firewalls (WAF) and DDoS mitigation. We utilize network segmentation to isolate production, development, and corporate environments.

11. Business Continuity

Metric	Target
Recovery Time Objective (RTO)	4 hours for critical systems
Recovery Point Objective (RPO)	1 hour maximum data loss

12. Incident Response

Report suspected vulnerabilities or incidents to: security@betopialimited.com

We acknowledge reports within 48 hours.

Loading Content