All data that Aumni handles is considered valuable, whether structured or unstructured. Therefore, Aumni maintains a strict access control policy to verify the identity of a person before transmitting, collecting, accessing, or storing data.
All customers are required to log in using multi-factor authentication (MFA). Our internal operations require an even stricter level of access and authentication rigor across all tools and applications. Whenever possible, we automate or programmatically enforce our security practices, such as by leveraging zero-trust and single-sign-on to manage our internal access to systems and data based on least-privilege access. Access to Aumni’s systems and data is restricted based on role and data classification of the data.