Security & compliance
Security and privacy, by design.
Security isn't a feature of Cloud Labs — it's the foundation. Here's how we protect your data across the platform, and keep it protected.
Our approach
Protection built into every layer.
Encryption everywhere
Data is encrypted in transit and at rest across the platform.
Least-privilege access
People and services get only the access they need, scoped to the role.
Strong authentication
Phishing-resistant multi-factor authentication is built in, not optional.
Monitoring & patching
Services are continuously monitored and kept current through proactive maintenance.
Standardised & automated
Building once and deploying the same way reduces the misconfigurations attackers rely on.
NZ privacy alignment
Designed to support New Zealand privacy expectations and good-practice security.
Compliance posture
Aligned to recognised good practice.
We align our practices to recognised good-practice security frameworks and design the platform to support our customers' obligations under the New Zealand Privacy Act 2020. Security responsibilities are shared: we secure and maintain the platform; your partner configures it to your needs; and clear, identity-based controls keep access accountable.
Because services are standardised and automated, the same strong baseline applies consistently — and ongoing proactive maintenance keeps it current as threats and technology change.
For specific questions about data residency, certifications, sub-processors or to request more detail for a due-diligence review, please get in touch.
Have a security question?
We're happy to walk through how Cloud Labs protects your data.