Our Security Approach
Security is foundational to everything we do at OffshoreBase. We protect client data, team member information and operational systems through a comprehensive set of technical and organisational controls.
We are committed to maintaining enterprise-grade security standards across all our infrastructure and operational processes.
Data Security
We implement robust data security measures across all systems handling client and employee data:
- Encryption in transit: All data transmitted between systems uses TLS 1.2 or higher
- Encryption at rest: Sensitive data stored on our systems is encrypted using AES-256
- Access controls: Role-based access ensures employees only access data necessary for their role
- Authentication: Multi-factor authentication required for all systems handling sensitive data
- Audit logs: Comprehensive logging of data access and system activity
Physical & Office Security
For clients on Dedicated Office Infrastructure, our managed office facilities include:
- Secured access-controlled entry to office premises
- CCTV monitoring of common areas
- Clean desk and screen lock policies enforced for all team members
- Secure disposal of physical documents containing sensitive information
- Visitor management procedures and non-disclosure requirements
Network Security
Our network infrastructure is secured through multiple layers of protection:
- Enterprise-grade firewalls and intrusion detection systems
- Dedicated high-speed internet connections with redundancy
- VPN access for remote team members where required
- Network segmentation to isolate client team environments
- Regular vulnerability scanning and penetration testing
Employee & HR Security
All OffshoreBase staff and managed team members are subject to stringent security requirements:
- Background verification for all employees before onboarding
- Confidentiality and NDA agreements signed at onboarding
- Regular security awareness training
- Clear policies on acceptable use of systems and data
- Immediate access revocation upon employee offboarding
Incident Response
We maintain a documented incident response plan to handle security events effectively:
- Dedicated incident response team with clearly defined roles
- Prompt containment and investigation of security incidents
- Client notification within 72 hours of confirmed data incidents
- Post-incident reviews to prevent recurrence
- Regular tabletop exercises to test response readiness
Compliance & Certifications
OffshoreBase operates in compliance with applicable Indian data protection laws and works towards internationally recognised security standards. We comply with:
- India's Information Technology Act, 2000 and IT (Amendment) Act, 2008
- India's Digital Personal Data Protection Act, 2023
- Applicable employment and labour laws governing employee data
Report a Security Issue
We take security reports seriously. If you believe you have discovered a security vulnerability or concern related to OffshoreBase systems or operations, please contact us responsibly:
- Email: hello@offshorebase.co
- WhatsApp: +91 8017100789
We will acknowledge receipt of your report within 24 hours and work to address confirmed issues promptly. We appreciate responsible disclosure and will not take legal action against good-faith security researchers.