Security is the product. This page summarizes how we protect our platform, our customers, and the disclosure process for researchers.
Last updated · June 2026
Compliance and assurance materials are shared with qualified customers when applicable. We do not claim certifications we do not hold.
Our platform is engineered in-house with defense-in-depth, least-privilege access, encryption in transit and at rest, and continuous monitoring by our own SOC.
If you believe you have found a security vulnerability, please report it to security@bpech.com. We commit to acknowledging reports promptly and working with researchers in good faith.
For regulated deployments, data residency and isolation controls keep customer data in-country on infrastructure the customer controls.