Logo
LoginRequest Demo

Resources

Data Security & Privacy

MYSO ESG HOLDING OÜ

At MYSO ESG HOLDING OÜ, we take data security, privacy, and platform reliability extremely seriously. Protecting the data entrusted to us by our customers is fundamental to our platform and operations.

Our infrastructure, systems, and internal processes are designed according to modern security best practices to ensure the confidentiality, integrity, and availability of all customer data.

Below is an overview of the security measures implemented across the MYSO ESG platform.

Data Protection & Integrity

Isolated Databases

Each MYSO ESG client environment operates on an isolated database architecture, ensuring strict separation between customers and preventing cross-client data exposure.

Regular Backups

All databases are mirrored and backed up daily across multiple secure facilities to ensure resilience against data loss or corruption.

Controlled Data Handling

Customer data is never exported or transferred outside our secured environment for testing, development, or any other purpose.

Application-Level Security

Secure Password Management

All user passwords are securely salted and hashed using modern cryptographic standards. Passwords are never stored or transmitted in plain text.

For security reasons, passwords cannot be viewed by employees or administrators. If a password is forgotten, it must be reset by the user.

Encrypted Data Transmission

All communication between the MYSO ESG platform and user browsers is secured using HTTPS with TLS 1.2 encryption.

This ensures that data transmitted between users and the platform cannot be intercepted or read by unauthorized parties.

Protection Against Web Vulnerabilities

All user inputs are properly sanitized and validated to prevent common web security risks such as Cross-Site Scripting (XSS) and related vulnerabilities.

Payment Security & PCI Compliance

MYSO ESG does not store, process, or transmit credit card information directly.

All payments are securely handled through trusted payment providers such as Stripe and PayPal, which are PCI DSS Level 1 certified service providers—the highest level of compliance in the payment industry.

This ensures that all payment transactions meet the strict security standards established by major credit card networks including Visa, Mastercard, American Express, and Discover.

Secure Software Development

Continuous Security Monitoring

Our infrastructure is continuously monitored for vulnerabilities and new security patches. Systems are regularly updated to ensure they meet the latest security standards.

Security Testing

We regularly perform internal security reviews and simulated attack testing to identify and mitigate potential risks.

Security-by-Design Development

All MYSO ESG software is developed following secure coding principles and modern software development best practices. Code is continuously reviewed and maintained to ensure system integrity and long-term reliability.

Internal Access Controls

Employee access to systems and customer data is strictly limited based on role-based access controls and job responsibilities. All employees must adhere to internal security and confidentiality policies.

Infrastructure & Data Center Security

The MYSO ESG platform is hosted on Google Cloud Platform (GCP), one of the world's most secure and reliable cloud infrastructures.

Google Cloud maintains industry-leading security certifications including:

  • ISO 27001
  • SOC 2 / SOC 3
  • Advanced encryption in transit and at rest

Our infrastructure is hosted across multiple global data centers, including:

  • United States (South Carolina & Virginia)
  • Europe (Frankfurt, Germany)
  • South America (São Paulo, Brazil)
  • Asia-Pacific (Singapore)

Google Cloud data centers include advanced physical security measures such as:

  • Biometric access control
  • 24/7 surveillance monitoring
  • Multi-layer security zones
  • Onsite security personnel

These safeguards ensure that only authorized personnel can access infrastructure systems.

Platform Availability & Reliability

MYSO ESG is designed for high availability and resilience.

The platform includes:

  • Redundant infrastructure
  • Automatic failover mechanisms
  • Continuous system monitoring
  • Distributed cloud architecture

These measures ensure that the platform remains available and operational for users worldwide.

Protection Against Unauthorized Access

To protect both customers and the platform from compromised accounts or malicious activity, MYSO ESG implements several security safeguards:

  • Monitoring for suspicious or irregular login activity
  • Automatic suspension of accounts showing abnormal behavior
  • Email notifications for important account changes
  • Continuous monitoring of platform activity for abuse or unauthorized usage

Compliance & Privacy

MYSO ESG is designed to support GDPR-compliant data protection practices.

We implement appropriate technical and organizational measures to ensure that personal data is processed securely and only for legitimate operational purposes related to the delivery of our services.

Responsible Disclosure

Cybersecurity is an ongoing process, and we continuously work to improve the security of our platform.

If you identify a potential security issue or vulnerability, we encourage responsible disclosure. Please contact our team at:

MYSO ESG HOLDING OÜ

Email: support@mysoesg.com

Our team will investigate and address any reported issues as quickly as possible.