Monito Security Guide

Security Overview

Provides an overview of the security principles and framework in place to protect customer data and ensure secure service operations.

Monito has always put innovation first. As more and more companies entrust their online assessments and remote monitoring to Monito, we recognize the importance of security more deeply than ever.

Ensuring the privacy and security of customer data is our top priority.

The sections below provide a comprehensive understanding of how data is processed and what security measures are applied within the Monito Business environment.

  • Compliance Framework

    Guidance on alignment with industry standards and regulations, and the compliance framework that delivers the highest level of data privacy and protection.

  • Risk Management

    Guidance on how risks are proactively identified, assessed, and mitigated to protect data from potential threats and vulnerabilities.

  • Data Transmission, Storage & Backup

    Explains the protection of data in transit, methods for storing data with integrity, and backup procedures to prevent data loss.

  • Access Control

    Guidance on access control mechanisms — including account management, authentication, and authorization — that ensure data confidentiality and privacy.

  • Network & App Security

    Explains the security measures implemented in the network infrastructure, including firewalls, intrusion prevention, and threat detection.

  • Physical Security

    Guidance on the physical security measures that protect facilities and infrastructure from unauthorized access and threats.

  • Security Incident Response

    Introduces the incident response plan, including procedures for detecting, reporting, and responding to security incidents.


If you need company information — such as our company name, headquarters address, number of employees, products, or key client portfolio — or have additional security-related inquiries, please contact us at any time. We will gladly provide the information you need.

Mail : cs@grepp.co

To experience the Monito service firsthand, please visit our official website.

Monito

Try Monito, an online exam AI proctoring platform to lower exam costs and increase participation rate.

Monito

Monito


For details on Monito's technical architecture, please refer to the separately provided architecture diagram.

All Monito products are developed in-house, with no outsourced software development. The service infrastructure runs on Amazon Web Services (AWS).


Monito is built with data security as a foundational principle.

Monito Business members are served in a securely isolated cloud environment.


Monito Business members are served in a secure cloud environment. 

We have appointed a dedicated Data Protection Officer (DPO) responsible for ensuring compliance with data protection laws and regulations. The DPO oversees our data protection practices, serves as the point of contact for personal data and privacy matters, and ensures that privacy standards are maintained.

For more details on how data is mapped — including database field identification, collection and processing purposes, and retention periods — please refer to our Privacy Policy.


Monito lets you control access to assessments.

Assessment administrators can directly choose the level of access to grant. Access can be restricted on a per-account basis. Public access is restricted, and administrators within an organization can configure assessments and other features so that only personnel within the Monito Business environment can access them, ensuring that sensitive assessment information is not exposed externally.


Through Role-Based Access Control (RBAC), Monito lets you manage access permissions according to the roles and responsibilities of users within your organization.

Administrators can assign team members to roles or groups and grant each role only the permissions it needs, limiting unnecessary access. When permission adjustments are required — for example, due to reorganizations, role changes, or departures — access can be quickly modified or revoked, enabling secure and efficient permission management.

This allows Monito Business to enforce access control based on the principle of least privilege and to manage access to sensitive information and key functions within the organization in a more systematic way.