Natter logo
We use cookies to enhance your experience. Please read our Privacy & Cookies Policy to learn more.
Security
At Natter, security is an intrinsic part of our DNA. We believe security is everyone's responsibility and safeguard customer data as if it were our own.
At the foundation of this approach is our ISO 27001-compliant Information Security Management System (ISMS), designed to ensure our customers, suppliers and employees can have confidence that their data is safe and that Natter is secure.
Whenever we build new products, improve our service, support our valued customers or make operational decisions, all our people are guided by Natter’s commitment:
We believe security is
everyone’s responsibility
We safeguard customer data
as if it were our own
We never rely solely on
automated or third-party tools
We are committed to continuous
operational improvement
We continue to evolve our
policies and procedures to stay
one step ahead
Our Certification
Natter is compliant with ISO 27001, the most widely recognised information security standard globally. This standard has defined how we establish, implement, maintain and continually improve our ISMS. Our ongoing compliance is audited by an independent third party.

Our Approach to Security

Application Security
We built Natter with security at its core by embedding an SDLC, peer review process, least-privilege access and security testing into our critical path.
Data Security
We encrypt data in line with best practice, both at rest (at a minimum of AES-256 or equivalent) and in transit (using TLS v1.2 or higher).
Physical Security
We only place our trust in data centre providers able to provide best-in-class physical security, such as Amazon Web Services (AWS, here).
Operational Resilience
We have a regular cadence to test our Business Continuity, Disaster Recovery and Incident Response procedures to validate their effectiveness.
Continuous Monitoring
We ensure ongoing compliance and the security of our wider infrastructure through use of enterprise-grade continuous monitoring partners.

Our Approach to Privacy

GDPR Compliance
Natter is compliant with the General Data Protection Regulation (GDPR) and its underlying rules on data protection, privacy and transfer.
Our End User Licence Agreement (EULA)
Data Processing
Natter works with global enterprises to ensure safeguards are in place to limit personal data access, alert customers to incidents and resolve data requests.
Our Service Providers & Data Transfer Policy
Privacy by Design
Natter’s adherence to data privacy is matched by our commitment to transparency on what data we collect and why, and where it is stored.
Our Privacy & Cookies Policy

Making Contact

We regularly support Information Security, IT, Data and Legal teams with their assessment of our posture and ongoing adherence with enterprise-grade security best practices. Our Information Security Team can be contacted here: [email protected].
Ready to find out more?