Security & Data Handling

Transparency about how we handle your data. LoadMagic runs on certified cloud infrastructure with encryption, access controls, and clear data lifecycle policies.

SOC 2 Type II — held by AWS, our infrastructure provider

SOC 2 Type II

LoadMagic runs entirely on Amazon Web Services (AWS), which holds SOC 2 Type II certification — verifying that infrastructure controls for security, availability, and confidentiality are designed and operating effectively over an extended audit period. All data is processed and stored in AWS Sydney (ap-southeast-2).

ISO/IEC 27001 — held by AWS, our infrastructure provider

ISO/IEC 27001

Our infrastructure provider AWS maintains ISO/IEC 27001 certification, the international standard for information security management. This covers the physical data centres, network infrastructure, and cloud services that LoadMagic is built on. Traffic is routed through Cloudflare (also ISO 27001 certified) for DDoS protection and TLS termination.

PCI-DSS — held by AWS, our infrastructure provider

PCI-DSS Compliant

AWS infrastructure is PCI-DSS compliant, meeting the highest security requirements for network architecture, access controls, and system monitoring. LoadMagic benefits from this certified foundation for all data storage and processing operations.

What We Don't Do

  • We do not sell, share, or disclose customer data to third parties
  • We do not access your data except to provide the service or respond to support requests
  • We do not require access to your production systems
  • We do not retain data beyond the stated retention periods unless required by law

Need Data to Stay On-Premises?

For organisations that cannot send data to a third-party cloud, we offer EPORT — a portable, containerised version of LoadMagic that runs entirely within your own infrastructure. All processing stays inside your network.

Contact us to discuss deployment options, or request a copy of our Data Processing Agreement.