MEIKAIIntroduction
Meikai implements technical and organisational measures designed to protect Customer Personal Data and platform operations. This page summarises those measures for due diligence and transparency.
This page does not constitute a certification or audit report. Meikai does not claim SOC 2 Type II certification on this website unless explicitly published elsewhere. Detailed commitments for enterprise customers are set out in the Data Processing Addendum (DPA) and related agreements.
1.Measures summary
The following measures are described in Meikai's DPA Annex II and applied in line with the nature and risk of Processing:
- Multi-factor authentication for administrative access to production systems (where supported)
- Role-based access controls with periodic access review
- Encryption in transit (TLS 1.2 or higher) and encryption at rest where appropriate
- Access logging and monitoring for production systems
- Documented incident response procedures with defined escalation paths
- Logical access controls and least-privilege access
- Confidentiality obligations for authorised personnel
- Vulnerability management and patching processes
- Backup and recovery measures
- Procedures for detecting, responding to, and remediating security incidents
Meikai may update these measures over time provided the overall level of protection is not materially reduced.
2.Operational practices
- Changes to production systems follow documented change-management practices (peer review, CI checks, controlled deployment)
- Security-related dependencies and containers are scanned in CI (e.g. static analysis and vulnerability scanning)
- Production traffic is served over HTTPS with platform hardening (secure cookies, HSTS, and related controls where configured)
- Edge rate limiting and monitoring alert on authentication failures, error rates, and latency
- Incident response procedures are documented internally with defined escalation paths
3.Data location and subprocessors
Customer Personal Data is primarily hosted in the European Union. See our Subprocessors page and Privacy Policy for further detail.
4.Enterprise due diligence
Enterprise and partner customers may request Meikai's Data Processing Addendum (DPA), Master Services Agreement, and Order Form templates by contacting us.
For security questionnaires or partner onboarding (including media and data partnerships), contact contact@meikai.ai.
5.Contact
MEIKAI LTD · Company number: 16607357 · Registered office: 51h Wickham Road, London, England, SE4 1LT
Related documents
- Legal centre: all policies and enterprise information
- Terms & Conditions: marketing website
- Terms of Service: software platform
- Privacy Policy: personal data
- Cookie Policy: cookies on the website
- Subprocessors: service providers