Data Protection, Encryption, and Access Control

NeevCloud enforces AES-256 encryption for data at rest and TLS 1.2 minimum (TLS 1.3 where supported) for data in transit. Centralised key management with automated rotation is in place across all storage. Multi-factor authentication is enforced for all privileged and external access. All accounts operate on a least-privilege model with periodic access reviews.

Customer workloads are logically isolated at the network level with no cross-customer data access possible. Segregation is validated during every VAPT cycle. NeevCloud's controls are aligned with ISO/IEC 27017 for cloud-specific security and ISO/IEC 27018 for PII protection in public cloud, as recognised under CERT-In's compliance expectations.