Main nav


It's in our DNA

Customer data protection and privacy is our top priority at Poka. Our information security program managed by a dedicated security team is based on the ISO 27001 Information Security Standard. The information security policies, procedures and work instructions are approved by management and available to all Poka employees.

As a Cloud Native application, we work hard to ensure that our efforts are in alignment with these standards, code of practices and industry best practices:

  • ISO 27002
  • ISO 27017 - Code of practice for cloud service providers
  • ISO 27018 - Code of practice for protection of personally identifiable information (PII) in the cloud
  • Cloud Security Alliance - Cloud Controls Matrix
  • OWASP best practices
  • IAPP best practices

As a result, we have built an application that thrives on the Secure by Design principles of the OWASP. It's based on a modern technology stack that provides the agility, performance, reliability, availability and the level of information security and privacy to meet our customer’s most stringent requirements.

CSA - OWASP - iapp

Can’t find the answer to your question?

If you still have questions, Poka's InfoSec team can be reached via e-mail at: If the content of your communication is sensitive, please encrypt your email using our PGP key.