Data Security and Privacy at AU10TIX

AU10TIX helps organizations verify identities and fight fraud with a strong commitment to data security, privacy, and operational resilience.

As a global company headquartered in the Netherlands, AU10TIX operates with infrastructure and teams distributed across multiple regions worldwide. Our production environments are designed so that customer data and service continuity are not dependent on any single geography.

How we protect customer data

We apply a security-first approach across our platform, operations, and infrastructure, including:

Strict access controls and role-based permissions

Continuous monitoring and independent oversight

Segmented environments and global redundancy

Privacy and security governance aligned with international standards

When AU10TIX acts as a Data Processor, we process personal data on our customers’ behalf and under their instructions. We do not share or provide customer data to governments or unauthorized third parties.

ISO 27001
IBETA-ISO Level 1
SOC2
TX Ramp
IBETA-ISO Level 2
ISO 27701
Kantara
IGC
PGCB
NGCB Nevada
MGCB
New Jersey Casino Control Commission

Built for resilience, security, and compliance

AU10TIX operates under internationally recognized standards and frameworks, including:

Our global operating model is intentionally designed to support the security, availability, and integrity of customer data, regardless of regional or geopolitical events.

For organizations evaluating identity verification, fraud prevention, and compliance providers, trust in data handling is critical. AU10TIX combines global scale with strong privacy and security controls to help customers operate with confidence.

FAQs

Where is customer data stored and processed?

AU10TIX leverages enterprise-grade cloud infrastructure and supports regional data residency requirements across major global markets. Customer data can be stored and processed in designated geographic regions based on regulatory obligations, contractual requirements, and customer preferences.

Organizations with specific residency requirements, including EU, US, and APAC deployments, can work with AU10TIX to align data processing and storage with their compliance needs.

Does AU10TIX share customer data with governments or third parties?

AU10TIX does not sell or share customer data with third parties for commercial purposes. Customer data is processed only to deliver and support AU10TIX services and may be handled by authorized service providers operating under strict contractual, security, and privacy requirements.

AU10TIX is committed to protecting customer data and maintaining transparency regarding how information is processed and secured.

What security certifications and standards does AU10TIX maintain?

AU10TIX maintains a comprehensive security, privacy, and identity assurance program backed by internationally recognized certifications and independent assessments. These include ISO/IEC 27001 for information security management, ISO/IEC 27701 for privacy management, SOC 2 Type II, TX-RAMP Level 2, Kantara certification for NIST SP 800-63A IAL2 identity assurance, and iBeta-certified ISO/IEC 30107-3 Presentation Attack Detection (PAD) testing for biometric liveness and spoof resistance.

In addition, AU10TIX participates in independent industry evaluations and maintains compliance programs designed to support global regulatory, privacy, and security requirements.

How does AU10TIX protect against identity fraud and spoofing attacks?

AU10TIX uses a multi-layered approach to identity verification and fraud prevention, combining AI-powered document verification, biometric verification, liveness detection, behavioral analysis, and real-time fraud intelligence.

The platform analyzes identity documents, selfies, devices, and transaction patterns to help detect forged documents, synthetic identities, deepfakes, spoofing attempts, and other forms of identity fraud. Advanced machine learning models continuously adapt to emerging threats, while independent testing and industry certifications help validate the effectiveness of AU10TIX’s fraud prevention capabilities.

By combining multiple verification signals into a single automated workflow, AU10TIX helps organizations reduce fraud risk while maintaining a secure and seamless user experience.

Is AU10TIX compliant with GDPR and international privacy regulations?

Yes, AU10TIX is committed to maintaining high standards of privacy and data protection. The company operates a privacy program aligned with GDPR and other applicable privacy requirements and maintains internationally recognized certifications, including ISO/IEC 27701 and ISO/IEC 27001.

AU10TIX helps organizations meet their privacy and compliance obligations through secure data processing, privacy-focused controls, and support for regional data residency requirements.

How does AU10TIX control access to sensitive information?

AU10TIX follows a layered security approach that combines role-based access controls, strong authentication, continuous monitoring, and administrative safeguards to protect sensitive information.

Access to customer data is restricted to authorized personnel with a legitimate business need, and all access is governed by established security and privacy policies. These controls are supported by regular security assessments, employee training, and internationally recognized security and privacy frameworks.

Does AU10TIX support customers operating globally?

Yes. AU10TIX serves organizations around the world, helping them verify identities, prevent fraud, and support compliance requirements across multiple markets and jurisdictions.

The platform is built to support global operations through broad document coverage, regional data residency options, and scalable identity verification workflows that help organizations deliver secure and consistent onboarding experiences worldwide.

How does AU10TIX ensure service availability and business continuity?

AU10TIX employs a resilient, cloud-based architecture supported by redundancy, continuous monitoring, and formal business continuity and disaster recovery programs. These controls are designed to help maintain service availability, protect critical operations, and support customers across global markets.

AU10TIX regularly evaluates and enhances its operational resilience through independent audits, security assessments, and ongoing infrastructure improvements to help ensure reliable service delivery.

For more information, contact us to learn more about our architecture, security practices, and privacy framework.