Our development is based on third-party packages that are actively and automatically scanned for security holes and vulnerabilities. The framework used in our platform has inherent controls to reduce exposure to Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF) and SQL Injections (SQLi), among others, focusing on OWASP Top 10.
No source code becomes part of the code base unless it is reviewed and approved by at least two other engineers, which ensures very high code quality and can detect errors at a very early stage of the application integration process.
Our highly skilled QA department reviews, tests, identifies and fixes security vulnerabilities in our already developer-tested code and application.
A large portion of the Flexperto platform services are fully covered by component tests.
Test and release environments are physically and logically separated from the production environment. No actual service data is used in the development or test environments.
We use a number of tools to ensure code quality and dynamically analyze code to meet our coding standards and rules.
Are you interested in learning more about the specific security measures we take?
We divide our security measures into three categories:
In order to continuously review and improve the measures described here and to establish a generally high level of information security at Flexperto, we have set up an information security management system (ISMS) in accordance with ISO 27001.
We will be happy to provide you with the following documents upon request:
Feel free to contact us under