TradeCheck Security Overview
Provider: TradeCheck (NZ) Limited Security contact: feedback@solisai.co Last updated: 19 February 2026
This document provides a high-level overview of TradeCheck security practices. It does not create contractual guarantees and controls may evolve over time.
1. Security principles
- Least-privilege access
- Defence in depth
- Monitoring and auditability
- Secure-by-default configuration
2. Data protection
- Encryption in transit using HTTPS/TLS
- Encryption at rest where supported by providers
- Logical tenant isolation controls
3. Access controls
- Role-based application access
- Restricted administrative access
- Multi-factor authentication for internal administrative accounts where available
4. Operational security
- Central logging for authentication and key admin events
- Backup and restore procedures
- Dependency updates and vulnerability management practices
5. Incident response
We maintain an incident response process for triage, containment, remediation, and communication.
Where an incident involves personal information, we assess and respond in line with applicable law and our Privacy Policy.
6. Responsible disclosure
If you believe you found a vulnerability, contact feedback@solisai.co and include:
- issue description,
- reproduction steps,
- potential impact, and
- safe proof-of-concept details.
Please do not publicly disclose vulnerabilities until we have had a reasonable opportunity to investigate and remediate.