SD Tech Solutions logo
Trust & security

How we secure the platform that secures you

If we're going to defend your endpoints and your email, you should know exactly how the platform itself is built, where your data lives, and what protects it. Here's the honest picture — including where we are on the compliance road, not just where we'd like to be.

Book a security audit See the platform →

Where your data lives

Canadian-hosted, on hardware we control

Your monitoring data, endpoint detections, and quarantined email are stored on self-managed infrastructure in Canada — not handed to a US hyperscaler subject to foreign data-access law. A direct answer for firms with PIPEDA, privacy, or data-residency requirements.

Tenant isolation

The platform is multi-tenant by design: every organization's devices, detections, and email domains are scoped to that org, behind role-based access. Administrators see their own estate — not anyone else's.

How the platform is protected

Access & identity

  • Multi-factor authentication on every account
  • Role-based access & least privilege
  • Brute-force lockout on login
  • Secrets encrypted at rest

Tamper-evident by design

  • Hash-chained audit log — every action recorded and verifiable
  • Sensitive/destructive actions are approval-gated
  • Agents authenticate with signed requests; the secret never travels on the wire
  • Endpoint protection reports any local pause as a tamper event

Hardened infrastructure

  • Default-deny firewall; only required ports exposed
  • Key-only, geo-restricted administrative access
  • Intrusion prevention & automated banning
  • File-integrity monitoring & automatic security updates

The protection we deliver

Endpoint

Detection on the open SigmaHQ standard (1,200+ rules), continuously-updated malicious-IP/URL/hash intelligence, on-demand antivirus, and approval-gated isolate/kill response with full forensics.

Email

A secure gateway in front of your mailbox: attachment & archive inspection, phishing/impersonation detection, real SPF/DKIM/DMARC verification, click-time link protection, quarantine, and outbound data-loss prevention.

Operations

24/7 monitoring with smart alerting, patch management, software inventory, verified backups, and a printable executive security report — all under one console.

Resilience & the compliance road

Continuity

Automated, off-box backups of the platform database and configuration, with restore verification, so a hardware failure is a recovery — not a loss. Backup and retention practices are documented and reviewed.

Where we are on compliance — honestly

We are an independent Canadian practice, not a certified enterprise vendor. We are not yet SOC 2 audited, and we'll tell you that up front. What we offer today is a transparent, documented security posture, a tamper-evident audit trail, Canadian data residency, and a willingness to complete your security questionnaire honestly. Formal certification is on the roadmap as the practice grows.

Questions a real security buyer should ask

Bring your security questionnaire. I'll answer it straight — and the free audit shows you exactly what protecting your environment would look like.

Book a security audit Back to the platform

Book a security audit

Tell me about your environment and any compliance or data-residency requirements, and I'll come back the same day — starting with a free audit.

  • Real CAPEX-vs-subscription math for your situation
  • What's safe in-house vs. cloud, given your data
  • One quick win you can act on right away

Prefer email? info@sd-techsolutions.com · Same-day reply.

No spam, no sales funnel — it comes straight to me.

Book a free audit →