Kontrol Keamanan

Perlindungan Data Pelanggan

  • AES 256 bit encryption for data at Rest and HTTPS with TLS 1.2 encryption for data in transit.

  • Tingkat penyebaran ketersediaan tinggi dengan cadangan reguler yang disimpan dengan redundansi.
  • Lapisan aplikasi yang dikonfigurasi untuk skala otomatis untuk menangani lalu lintas berlebih karena serangan atau bahkan karena lonjakan lalu lintas aplikasi yang sah.

  • Application supports SAML and ADFS based Single Sign On.
  • Configurable Role Based Access Control (RBAC) with granular control on user permissions.
  • Customizable password complexity requirements.
  • Access to corporate networks is limited through Zero Trust Network Access (ZTNA)/VPN.
  • End to end audit trails of user activities

  • Next Generation Antivirus protection for devices and servers.
  • Multi layer defense including Web Application Firewall (WAF), Intrusion Detection System (IDS), Denial of Service (DoS) protection, etc.

  • Robust business continuity and disaster recovery plans in place to ensure continued operation in the face of abnormal business conditions/disasters.
Perlindungan Data Pelanggan

Siklus Pengembangan yang Aman

  • Security and privacy requirements analysis during the design phase and ensuring that the requirements are satisfied at each stage of the life cycle.

  • Melatih pengembang tentang teknik pengkodean dan tinjauan kode yang aman termasuk 10 kerentanan teratas OWASP dan pencegahannya.
  • Pemindaian kode otomatis dilakukan untuk mengidentifikasi masalah keamanan.

  • Manajemen perubahan yang diintegrasikan ke dalam proses SDLC, dengan berbagai pemangku kepentingan internal dan eksternal. Pelanggan akan diinformasikan sebelumnya tentang perubahan besar.

  • Access to production systems are restricted based on job roles and limited time access is given only on a need to know basis which expires after the requested time. Access is periodically reviewed.

  • Periodic security testing of applications as per OWASP standards.
  • Regular internal and external vulnerability assessment and penetration testing (VAPT).
  • Saat ini kami tidak memiliki program hadiah bug publik, tetapi kami sangat menghargai upaya para peneliti keamanan. Lihat Kebijakan Pengungkapan Kerentanan Bertanggung Jawab kami untuk informasi lebih lanjut.
Siklus Pengembangan yang Aman

Privasi berdasarkan Desain dan Default

  • ISO 27701:2019 Certified and have a well established, implemented, monitored and audited Privacy Information Management System.
  • Melacak pengumpulan, penyimpanan, pemrosesan, akses, transfer, penyimpanan, dan penghapusan Informasi Pribadi.

  • Configurable retention periods towards personal information.
  • Proses khusus dan saluran yang dibuat untuk penghapusan data pribadi berdasarkan permintaan.

  • Sub-prosesor yang diidentifikasi, dinilai, dan disejajarkan memastikan perlengkapan yang sesuai. Anda dapat membaca lebih lanjut tentang proses dan Daftar Sub Prosesor kami di sini

  • Certain privacy laws provide individuals with the right to request access to and/or deletion of personal information an organization has about them. To submit a data subject rights request in relation to personal information processed by Locus, please fill out the form available here.
Privasi berdasarkan Desain dan Default

Kepatuhan

Untuk memastikan efektivitas kontrol kami dan untuk membantu pelanggan kami memenuhi persyaratan kepatuhan mereka, kami melakukan sertifikasi terhadap Keamanan Informasi dan Privasi standar industri

strip-left-pattern
IS 706275
strip-right-pattern
IS 706275
ISO 27001:2013

Locus is ISO 27001:2013 certified and have an effective Information Security Management System in place. The certificate is available on request.

strip-left-pattern
PM 767891
strip-right-pattern
PM 767891
ISO 27701:2019

Locus is ISO 27701:2019 certified, helping us to demonstrate our capability to protect customer’s Personal Information.

Bagaimana kami membantu pelanggan memenuhi persyaratan kepatuhan mereka

GDPR
GDPR

Compliance with ISO 27701:2019 has provided us with a strong foundation for GDPR compliance. We make sure that the personal information for EU customers does not leave the EU region. Reach out to privacy@locus.sh or dpo@locus.sh in case of any queries regarding GDPR or Privacy.

Untuk informasi lebih lanjut tentang kepatuhan GDPR Locus, Anda dapat meminta DPA kami di privacy@locus.sh. DPA dapat ditandatangani berdasarkan permintaan.

strip-left-pattern

Make every delivery experience a part of your growth

strip-right-pattern

Schedule a meeting with Locus

How can Locus help manage your logistics?

  • Mesin geocoding milik Locus mengubah alamat yang tidak jelas menjadi koordinat geografis yang akurat sehingga membantu eksekutif di lapangan agar menemukan alamat dengan mudah.
  • Digitize all your operational variables such as fleets, delivery persons etc. to come up with the best route plan every day.
  • Track your orders in real-time with the Locus Live Dashboard. Locus’ last-mile delivery app Locus On The Road (LOTR) helps delivery partners process orders.
  • Visualize and tweak your scheduled plans via three key metrics— geography, time, & vehicle (fleet)—with a birds-eye view of your entire operations.
  • Buat laporan dan analisis parameter penting yang Anda butuhkan unutk membuat keputusan penting.

Join Industry Leaders:

43m+ miles

Reduction in distance traveled

18m+ tons

Reduction in GHG emissions

$200 m

Savings in logistics costs
brand logos
strip-left-pattern
strip-right-pattern
Bahasa IndonesiaFrançaisDeutschEnglish