Security Statement
Last updated 14th of January 2025
Compliance and Standards
Mobile Message’s core messaging platform is hosted within Equinix data centres located in Sydney, Australia.
Equinix’s data centres operate under recognised international standards, including ISO 14001, ISO 22301,
ISO 27001, ISO 50001, ISO 9001, SOC 1 Type II, SOC 2 Type II, and PCI DSS.
Through our partnership with Equinix, Mobile Message benefits from a robust foundation of security
and compliance controls.
Reliability and Performance
- Highly Available Platform: Our platform leverages Equinix’s resilient data centre environments and multiple network carriers to deliver dependable service.
- Low Latency: We strive for sub-100 millisecond response times to ensure rapid communication.
- Scalable Infrastructure: The platform can dynamically scale to handle high-volume message sending.
- Redundant Connections: Multiple connections to major telecommunication networks provide added resilience and redundancy.
- Message Prioritisation: High-priority messages are delivered promptly even during periods of large-volume sending.
Security
Data in Transit
Connections between customers and Mobile Message can be protected using TLS 1.2 with AES ciphers.
When configured correctly, this aligns with stringent government and industry standards,
helping protect data against interception and tampering.
Network Protection
Our production environments are segregated from corporate networks through Virtual Private Networks (VPNs) and firewalls.
We employ network segmentation and strict access controls to limit connectivity to essential services only.
Security Logging, Monitoring & Response
Security events and logs from our platforms are collected and monitored in accordance with industry best practices.
Access Control
- Customer Access: Each user is provided with an individual account, enabling granular control of permissions and access to customer data.
- Staff Access: We utilise a secure corporate staff directory with role-based access control and multi-factor authentication (MFA) to ensure that only authorised personnel have access to privileged systems.