Enterprise-grade data security your EV charging business can count on
Grow your business confidently with the AMPECO platform that meets your security compliance requirements and keeps your data safe.
Advanced data security measures for scalable business growth
We have implemented a comprehensive set of security controls and follow industry best practices to protect your data and help you fulfill data privacy obligations worldwide. Our Information Security Management system (ISMS) is ISO certified, and we continuously improve our secure software development lifecycle. We perform security reviews to guarantee risks and vulnerabilities have been identified and mitigated for successful and seamless integrations.
At AMPECO, we value and protect our customers and data.
Security is an integral part of our software development processes and we continuously improve our internal security controls framework to achieve best-of-breed protection for our people, data, and services.
Yordanka Tsaneva
Head of Security, AMPECO
AMPECO protects your data at every layer
We comply with the highest industry standards and regulations to ensure your data is secure.
ISO/IEC 27001: 2022
Our Information Security Management System is certified for ISO/IEC 27001:2022, along with ISO/IEC 27017:2015, 27018:2019, and 27701:2019. These standards ensure comprehensive cybersecurity and privacy controls across our business operations and our SaaS cloud service delivery.
SOC 2 Type II
SOC 2 Type II provides independent validation of the design and operating effectiveness of our security controls. We partner with A-Lign to conduct annual audits covering security, availability, and confidentiality, enabling fast-tracked vendor assessments and simplified due diligence processes for enterprise charging operations.
Privacy Compliance
We deliver AMPECO SaaS services in compliance with the European Data Protection Regulation (GDPR) and have supported our customers in achieving compliance with other privacy regulations worldwide, including Australia, Canada, Israel, Morocco, Switzerland, and Singapore.
NIS2
We implement comprehensive NIS2 directive compliance through:
– Secure protocols for authentication, encryption, and communication.
– Supplier due diligence, incident response and business continuity processes.
How AMPECO Security works
Keeping your data secure
To ensure adequate data access management, we utilize Role-Based Access Control and secure login mechanisms such as multi-factor authentication (MFA) and virtual private networks (VPN). We can offer seamless integration with your corporate SSO solution with Azure Active Directory, Auth0, and KeyCloak.
To secure data at rest and in transit, we use industry-standard encryption methods such as TLS 1.2 and AES-256. Customer data is segregated through multi-tenancy, with separate tenant environments utilizing distinct databases and keys for added security and privacy.
We have strict procedures for handling data, including regular backup, retention, portability, disclosure and disposal. This ensures your data is treated with care and protected at all times.
Building security into our software architecture
Our cloud-based EV charging platform is hosted on multiple continents, ensuring localization and multiple zones per region. We follow secure development practices, including segregation of environments and automated quality and security testing on every release.
We have implemented a comprehensive risk management program to further ensure the security of our product. It includes incident management and disaster recovery procedures and third-party penetration testing.
Upholding security standards for our team and suppliers
All team members undergo screening processes, and we follow strict exit procedures. We have policies for the acceptable use of assets that are reinforced during regular security training.
We have strong contracts in place, including service level agreements, data processing agreements, and non-disclosure agreements, to support our customers’ compliance.
We also have strict protocols in place, such as supplier due diligence and supplier evaluation processes for our partners and suppliers that ensure third-party compliance with our security standards for customer data protection.
AMPECO’s security features and best practices
We safeguard your data from unauthorized access and help you comply with regional data protection regulations.
Infrastructure Security
Our SaaS services include comprehensive security features: network firewall, DDoS protection, secure configuration, audit logging, and continuous security monitoring.
Business Continuity & Availability
Built on AWS best practices, our platform delivers high availability and scalability by design. We maintain zero-downtime operations and implement a robust service recovery framework with defined RPO and RTO metrics, supported by regular disaster recovery drills.
User Management & Authentication
Our platform allows you to manage users through custom user groups, roles, and password policies.
Enhanced security features include
2FA for administrative users and various Single Sign-On (SSO) integrations, ensuring both secure and seamless access.
Vulnerability Scanning and External Penetration Testing
We maintain system security through regular penetration testing and vulnerability assessments, implementing critical updates and patches promptly to address any identified risks.
Our Awards
Product Leadership
For its overall stellar performance, superior technological innovation, and strategic development, Frost & Sullivan distinguished AMPECO with the 2022 Global EV Charging Software Product Leadership award.
Product Innovation
Our EV charging management platform was awarded The Forbes Innovation Award which acknowledges companies whose products transform their respective industries and create significant value for their clients.
Sustainability Award in Automotive
AMPECO was awarded The Sustainability Award in Automotive for outstanding solutions in environmental and climate protection, as well as societal and governance impact in the automotive and mobility industry.
Explore AMPECO’s commitment to industry-leading data security and privacy standards. Learn more about our ISO 27017 and ISO 27018 certifications, as well as our successful SOC 2 Type II audit, reinforcing our dedication to safeguarding customer data and adhering to best practices.
request a demo
Get started with AMPECO
Book a 30-min introductory call with our specialists and learn more about our EV charging platform.
Security FAQs
How is the personal data of my customers protected and secured?
The personal data of your customers is protected and secured through a variety of methods, including the encryption of sensitive data both in transit and at rest, regular security audits and vulnerability assessments, strict data access controls, regular backups, and disaster recovery plans to ensure continuity of service in the event of a security breach or other incident.
Will my EV charging data be shared and sold to third parties?
At AMPECO, all customer and charger-related data is wholly owned by you and always will be. We have strict policies in place to ensure that any data collected through our EV charging platform is only used for the purpose of providing our services and improving the user experience. We do not share or sell any data to third parties.
What measures are in place to prevent unauthorized access to my data?
Several measures are in place to prevent unauthorized access to customer data. These include:
– Secure user authentication and login process that uses multi-factor authentication or other advanced methods;
– Access controls that limit who can view and modify customer data;
– Data encryption and regular monitoring and logging of user activity to detect and respond to suspicious activity;
– Compliance with relevant data protection regulations.
Related Reading
Insights
- 3 strategic ways to use API to scale your EV charging business
- 6 reasons to use a white-label EV charging solution
- Building A Successful Home Charging Business Model
- What the Energy Performance of Buildings Directive means for EV charging
- The US has officially joined the race: a new EV Charging Action Plan
- EV Roaming: An Important Key to Scaling Your Charge Point Network
Book EV Charging Consultation
Our e-mobility experts are ready to answer all your questions about EV charging software and hardware.
Let’s talk about your business case, software features you are curious about, or how we can help you start and grow your EV business.
