Data Security
How we protect your financial data in accordance with FZ-152 requirements
Last updated: April 12, 2026
Data encryption in transit and at rest
Certified (pursuing certification)
24/7 monitoring and incident response
Your data security is our top priority at Keiront. We use advanced technologies and industry best practices.
Security architecture
Schema-per-tenant architecture
Each client has a fully isolated database schema. Data from different hotels is physically separated.
Encryption
In transit (TLS 1.3)
All data is transmitted over secure HTTPS connections with TLS 1.3.
At rest (AES-256)
Sensitive data is encrypted on disk using AES-256.
Database security
PostgreSQL runs in a private VPC network. Access is limited to application servers via secure connections.
Security features
End-to-end encryption
TLS 1.3 for transmission, AES-256 for storage.
Russian infrastructure
All data is stored on servers in the Russian Federation.
Complete audit log
All user actions are logged: who, what, and when.
FZ-152 compliance
Developed in accordance with Federal Law No. 152-FZ.
RBAC and MFA
Role-based access control. Multi-factor authentication for critical operations.
24/7 monitoring
Our monitoring system detects anomalous activities.
Compliance requirements
Federal Law No. 152-FZ
Our platform fully complies with FZ-152 requirements.
GDPR
For EU clients: the platform complies with GDPR requirements.
PCI DSS (in progress)
We follow PCI DSS security standards in payment information processing.
Incident response plan
We have a documented plan for responding to security incidents.
- 1.Immediate detection and isolation of affected systems
- 2.Notification of affected clients (in accordance with law)
- 3.Root cause analysis and recovery
- 4.Implementation of measures to prevent recurrence
Security contacts
If you have concerns about platform security:
Email: security@keiront.io
Response guaranteed within 24 hours
Still have security questions?
Our security team is ready to answer any questions