AxioGreen is designed for enterprise building portfolios where data integrity, access control, and regulatory compliance are non-negotiable. Here is exactly how we protect your data.
AxioGreen uses Keycloak as the identity and access management layer — the same open-source IAM trusted by Red Hat, Airbus, and thousands of enterprises. Every login uses PKCE OAuth 2.0 with short-lived JWT access tokens and refresh token rotation.
Access is controlled by a granular role-based access control (RBAC) system. Admins assign roles per user — not just platform-wide but down to individual building level.
All data is encrypted in transit and at rest using industry-standard algorithms.
AxioGreen is built for European customers with EU data residency as the default. We are fully GDPR compliant and do not transfer personal data outside the European Economic Area.
Every significant action in the platform — building creation, user access changes, alarm acknowledgements, sensor threshold changes — is recorded in tamper-resistant audit logs.
AxioGreen runs on containerised infrastructure with automated failover, daily backups, and a 99.9% SLA for Enterprise customers.
We take security seriously and appreciate responsible disclosure from the security community. If you believe you have found a security vulnerability in AxioGreen, please report it to us privately before public disclosure.
Send a detailed description to security@axiogreen.com. We will acknowledge receipt within 24 hours and aim to resolve validated issues within 30 days. We will credit researchers who report valid vulnerabilities in our security changelog.
Please do not perform automated scanning against production systems or attempt to access customer data. Test against your own account only.
Contact Security TeamWe'll provide a full security questionnaire, DPA, and architecture review for enterprise evaluations.