Example trust content — not a certification claim. Replace with verified attestations before tenders.
Trust & Security Center
Last updated:
How SmartOne approaches security, compliance, and transparency for government programmes.
Security principles
- Defense in depth, least privilege, and segregation of duties in production deployments.
- Encryption in transit (TLS) and at rest for product systems per contract.
- Security-aware SDLC, change control, and incident response playbooks.
Marketing site vs. product infrastructure
smartoneworld.com is a public marketing website on shared hosting (United States). Sovereign, air-gapped, or on-premise deployments for government customers are delivered under separate statements of work and are not hosted on this brochure infrastructure.
Penetration testing
Production government systems undergo security testing on a defined cadence. Executive summaries may be shared under NDA with qualified prospects — REPLACE-GUIDE: T-01.
Subprocessors
See our Privacy Policy for website-related processors. Customer DPAs list product subprocessors per deployment.
Report a vulnerability
security@smartoneworld.com — REPLACE-GUIDE: T-04. Please include steps to reproduce and impact assessment.
ISO/IEC 27001
Information security management. Status: available on request / in progress — do not cite without certificate.
SOC 2 Type II
Service organisation controls. Status: available on request — REPLACE-GUIDE: T-01.
ISO/IEC 27017 / 27018
Cloud security and PII in public clouds — confirm scope with compliance team.