Trust Center

Built-in enterprise-grade security

Data breaches are a real and imminent threat in the real estate sector, with potentially catastrophic financial, reputational and legal consequences. BuildingMinds puts the highest priority on securing customers’ data from any kind of potential cybersecurity risk, and offers a solution with enterprise-grade security features: 

  • Built on the proven and secure cloud infrastructure offered by Microsoft Azure, BuildingMinds provides a single access and management plane for all its data, enabling complete control, audit trails and seamless access along the entire building and portfolio life cycle
  • Building on the flexibility of Microsoft Azure Cloud, the security measures are penetration test-approved
  • BuildingMinds is officially ISO/IEC 27001:2013 certified

Full data ownership

The BuildingMinds solution keeps data right where it belongs: In the hands of the customer. The only people who control access to the data are the customers themselves:

  • The platform is built on a micro-service structure, in which every service operates separately and remains the owner of its data storage. This allows a role-based access control to be structured at the object-level (such as sites or buildings) and enables granular level permissions. To further verify access permissions, user IDs and the associated permissions are stored in the authorization data storage. The authentication mechanism relies on Azure Active Directory and OAuth 2 standard for Authentication
  • BuildingMinds applies encryption to all data, both at rest and in transit. Through continuous vulnerability scans, regular internal and external security audits, multi-point code reviews, and SIEM monitoring, we strive to minimize potential attack vectors and the chance of security incidents
  • The customer decides what data is processed on the platform and the stored data is restricted to ensure the functionality of the software itself. Both the BuildingMinds platform and its partners comply with General Data Protection Regulation (GDPR). As part of the data onboarding process, all data streams are harmonized and validated, and the platform ensures data integrity through regular plausibility checks

Third-party data security

Wherever data comes from, BuildingMinds ensures maximum data integrity and security:

  • During data onboarding, customer data is transferred to the platform via either the platform’s file storage or the general connector from IoT or customer systems. The data is then transferred to the trusted, restricted area where it can be safely integrated by the platform’s various micro-services
  • BuildingMinds incorporates standard protocols that facilitate data exchange with third-party service providers such as IoT sensors, energy meters or tenants. BuildingMinds verifies that partners adhere to best practices, conduct penetration tests and have an appropriate response process for all major security incidents
Talk to our data and digitalization experts We’re looking forward to answer any questions you may have about our solutions and services! Request demo

Thank you!

To receive our e-mails, please check your inbox and confirm your sign-up.

go back

Thanks for getting in touch with BuildingMinds.

We'll get back to you just as soon as we can.

go back