Security Statement

Last updated 14th of January 2025

Compliance and Standards

Mobile Message’s core messaging platform is hosted within Equinix data centres located in Sydney, Australia. Equinix’s data centres operate under recognised international standards, including ISO 14001, ISO 22301, ISO 27001, ISO 50001, ISO 9001, SOC 1 Type II, SOC 2 Type II, and PCI DSS. Through our partnership with Equinix, Mobile Message benefits from a robust foundation of security and compliance controls.

Reliability and Performance

  • Highly Available Platform: Our platform leverages Equinix’s resilient data centre environments and multiple network carriers to deliver dependable service.
  • Low Latency: We strive for sub-100 millisecond response times to ensure rapid communication.
  • Scalable Infrastructure: The platform can dynamically scale to handle high-volume message sending.
  • Redundant Connections: Multiple connections to major telecommunication networks provide added resilience and redundancy.
  • Message Prioritisation: High-priority messages are delivered promptly even during periods of large-volume sending.

Security

Data in Transit

Connections between customers and Mobile Message can be protected using TLS 1.2 with AES ciphers. When configured correctly, this aligns with stringent government and industry standards, helping protect data against interception and tampering.

Network Protection

Our production environments are segregated from corporate networks through Virtual Private Networks (VPNs) and firewalls. We employ network segmentation and strict access controls to limit connectivity to essential services only.

Security Logging, Monitoring & Response

Security events and logs from our platforms are collected and monitored in accordance with industry best practices.

Access Control

  • Customer Access: Each user is provided with an individual account, enabling granular control of permissions and access to customer data.
  • Staff Access: We utilise a secure corporate staff directory with role-based access control and multi-factor authentication (MFA) to ensure that only authorised personnel have access to privileged systems.