Ampion Subscriber Security
Security First Approach
Ampion is ISO 27001 certified. ISO 27001 is recognized as the global standard for information security with over 100 security requirements governing the creation and management of a robust Information Security Management System (ISMS). These requirements span physical protection, software development practices, systems architecture, and far-ranging operational processes, including risk management and business continuity. Ampion’s certification rely on our systems and business practices to protect the confidentiality and integrity of their data (We can provide an electronic copy of our certificate upon signature of an NDA).
Protecting Your Data
Ampion works directly with your utility to ensure that your utility data is handled to meet both our standards of security as well as theirs. Therefore all of your data is securely protected in transit and when stored in our databases.
We use well established and highly regarded payment processors to validate and manage your payment information, such as Stripe and Plaid. Our use of these services complies with PCI and NACHA – two payment industry standards that are designed to protect consumers and businesses. We do not store your payment information and will never ask for your payment information over the phone. Instead, you will use our web-based platform to secure all your payment information.
Your password is encrypted and cannot be retrieved even by us. That is why we will never ask you for your password if we contact you. Instead we would ask you to reset your password. This process ensures you remain in control of your data at all times. The same goes for all other personal information we store. Every piece of data tied to you, is either encrypted or protected.
Training Our Team
Ampion invests heavily in security training, awareness and process controls so we are vigilant in protecting your data. As you might expect, many of us at Ampion are also subscribers, so we take this personally!