No Results Found
The page you requested could not be found. Try refining your search, or use the navigation above to locate the post.
Security
MetaComet ensures the highest levels of security in our royalty, revenue sharing, and rights management systems — meeting the stringent data protection requirements of regulated industries including pharmaceuticals, biotechnology, life sciences, and financial services, as well as the privacy expectations of every industry we serve.
Security Program Highlights
When evaluating rights and royalty management software, security credentials are easy to overlook — until something goes wrong. Many competing platforms have not achieved SOC 2 Type II certification or do not offer enterprise-grade infrastructure. MetaComet has invested heavily in both, so your data is protected to the highest standards available.
Data Security
MetaComet encrypts all data at rest and in transit — including royalty recipient financial information, contract terms, sales data, and payment records. We enable HTTPS and use SSL database connections to protect sensitive data transmitted to and from our applications.
GDPR
MetaComet is fully GDPR-compliant, ensuring that royalty recipient data and sales information originating in the European Union is handled in accordance with EU privacy law. For any organization with European licensing partners, distributors, or royalty recipients, this is a non-negotiable requirement — and one MetaComet meets in full.
Application Security
MetaComet regularly engages some of the industry’s best application security experts for third-party penetration tests. Our penetration testers evaluate the source code, running application, and the deployed environment. We employ third parties to monitor application dependencies to mitigate vulnerabilities as they arise. Our development team backs all code with extensive tests, peer code reviews and static analysis tools.
Infrastructure security
Your data is continuously backed up across multiple secure locations, and our infrastructure is designed to keep running — and recover instantly — even in the event of a hardware failure or outage. We use the Heroku platform to deploy our applications. Heroku’s Continuous Protection keeps data safe on Heroku Postgres databases. Every change to your data is written to write-ahead logs, which are shipped to multi-datacenter, high-durability storage. Each component is backed up to secure, access-controlled, and redundant storage. The Heroku platform allows for recovering databases to within seconds of the last known state, restoring system instances from standard templates, and deploying applications and data. In addition to standard backup practices, Heroku’s infrastructure is designed to scale and be fault tolerant by automatically replacing failed instances and reducing the likelihood of needing to restore from backup.
Soc 2 Type 2
MetaComet Systems, Inc. has successfully completed the AICPA Service Organization Control (SOC) 2 Type 2 audit. SOC 2 Type II certification is the gold standard for SaaS data security — and many competing royalty management systems have not achieved it. For organizations in regulated industries, or any company that takes data protection seriously, it’s a meaningful distinction when evaluating software vendors. MetaComet Systems, Inc. is continuously audited by Prescient Security, a leader in security and compliance certifications for B2B, SAAS companies worldwide. Prescient Security is a registered public accounting firm in the US and Canada and provide risk management and assurance services which includes but not limited to SOC 2, PCI, ISO, NIST, GDPR, CCPA, HIPAA, CSA STAR etc.
