We use cookies

PDPL Compliant

We use cookies to enhance your experience on our website. Some are essential for the site to function, while others help us understand how you use the site.

Privacy PolicyLearn More

Sovereign Spotlight

Search across all modules, people, and actions

Critical Compliance Alerts

8
Total Penalty Exposure:
5,249,500 SAR

No Pending Alerts

All regulatory requirements are up to date

3 critical8 pending
عقل

AqlHR

Security Whitepaper

Enterprise Security

Security Whitepaper

Comprehensive Technical Security Documentation for Enterprises

AES-256
Encryption at Rest
TLS 1.3
Encryption in Transit
Saudi Arabia
Data Residency
99.9%
Uptime SLA
Data Encryption
Comprehensive encryption for data at rest and in transit

Data at Rest

  • AES-256 encryption for all stored data
  • Database-level encryption (TDE)
  • Encrypted backups with separate key management
  • File-level encryption for documents

Data in Transit

  • TLS 1.3 for all API communications
  • HSTS enabled with preloading
  • Certificate pinning for mobile apps
  • Perfect Forward Secrecy (PFS)

Key Management

Key Storage:

  • • Hardware Security Modules (HSM)
  • • AWS KMS with customer-managed keys
  • • Key rotation every 90 days

Access Controls:

  • • Separation of duties for key access
  • • Multi-party authorization for master keys
  • • Audit logging of all key operations

Need More Security Information?

Our security team is available to discuss your specific requirements, conduct security reviews, and provide additional documentation.