Announcement
Palindrome makes the FCA's AI Live Testing cohort → Foster Denovo expands AI capabilities with Palindrome →

Enterprise grade

Palindrome is built to the highest security standards. Comprehensive accreditations, expert-advised protocols, and complete cloud-based data segregation, all designed to protect your firm's data at every layer.

Globally certified and compliant

We meet the highest global standards for data security and compliance.

SOC 2 Type II

SOC 2 Type II

Assessed against stringent AICPA Trust Criteria.

GDPR Certified

GDPR Certified

Your privacy and data rights are safeguarded.

ISO 27001

ISO 27001

Robust controls for information security management.

ISO 42001

ISO 42001

AI-specific governance, built in from the ground up.

Flexible deployments

Palindrome runs entirely inside your Azure tenant. Procure directly or transact through the Microsoft Marketplace to draw down your existing Microsoft commitment.

YOUR AZURE TENANT
YOUR IDENTITY Microsoft Entra ID SSO · MFA · RBAC YOUR ENCRYPTION Azure Key Vault at-rest · in-transit YOUR NETWORK Private VNet private endpoints only YOUR AI MODELS Azure AI Foundry your model deployments Palindrome PLATFORM
Your data and your models never leave your Azure tenant.
2 weeks
END-TO-END
Stood up inside your Azure tenant in two weeks.
Production-ready, integrated with your CRM and Microsoft Graph, configured to your standards.
Your tenant, your controls
Palindrome runs entirely inside your Azure subscription. Your identity, your network, your security policies, applied exactly as they already are.
Two procurement paths
Buy direct from Palindrome, or transact through the Microsoft Marketplace. The Marketplace route counts toward your existing Microsoft commitment (MACC).
No seat or usage caps
So every adviser, operator and compliance team member can be on the platform. No per-seat charges holding back rollout.

Our security principles

End-to-end encryption

All data at rest and in transit is encrypted using industry standard protocols (AES-256, TLS 1.2+). This ensures that data is always protected, even during processing or transfer.

Data residency compliance

All customer data is stored exclusively within regulatory-compliant geographies, with enforced controls for residency and sovereign cloud preferences, ensuring firms meet local legal obligations.

Private backend architecture

Our backend services operate entirely within private, secured networks. No compute resources are exposed to the public internet, only explicitly secured front-end interfaces are accessible externally.

Continuous threat monitoring

We leverage Google Cloud's Security Command Center for 24/7 real-time monitoring, vulnerability scanning, and alerting, proactively detecting anomalies, intrusions, and misconfigurations.

Customer-level data isolation

Each customer's data is stored in a dedicated and logically isolated environment, ensuring no cross-tenant access, no shared databases, and complete customer-level segregation.

Zero trust access controls

Access to all systems is governed by zero trust architecture principles, with enforced MFA, least privilege roles, network-level policies, and endpoint hardening across both cloud and internal devices.

Explore Trust Centre