Information Security at DEX

Our Commitment to Data Security and User Trust

At DEX, safeguarding your data is central to our mission. As a data exchange utility, we enable organizations to securely share and access data across industries and data types. Security, compliance, and trust are at the core of how we design and operate our services.

Shared Responsibility for Security

DEX handles encryption of all data—in transit and at rest—and secures the platform infrastructure, monitoring, and compliance.

You manage access in your environment: configure users, roles, and permissions so only the right people can exchange and view data.

• DEX (platform security): Encryption, infrastructure and network security, continuous monitoring, audits, compliance.
• You (access security): User and role management, least-privilege permissions (for portal and API), periodic access reviews.

Risks in Data Exchange

Using a cloud-based data exchange like DEX provides great flexibility and efficiency, but it’s important for you to be aware of potential risks:

• Data security: Sensitive data must stay protected against unauthorized access.
• Regulatory compliance: Ensure lawful handling of personal and regulated data (e.g., PDPA, GDPR).
• Availability: Service uptime and resilience impact access to your data.
• Human error or insider threats: Misconfigurations or misuse of access rights can create vulnerabilities.

DEX Security Features and Protections

• End-to-end encryption: Data is encrypted in transit and at rest.
• Strong access controls: Fine-grained permissions and support for multi-factor authentication (2FA).
• Continuous monitoring & auditing: Threat detection, logging, and regular independent assessments.
• Resilient infrastructure: Redundancy, backups, and disaster recovery to maintain high availability.

Certifications & Compliance

DEX is fully committed to meeting top-tier security standards and regulatory requirements, which is reflected in our certifications and compliance efforts:

• PDPA (Singapore): We align our privacy practices to PDPA requirements.
• ISO/IEC 27001: Our ISMS is certified to the international standard.
• Cyber Trust Mark: Recognized for robust cybersecurity practices in Singapore.

Security Awareness & Best Practices

• Enable MFA for all users and use strong, unique passwords.
• Follow least-privilege access: grant only the permissions required.
• Review roles and access regularly, especially after team changes.
• Classify your data and apply additional safeguards to highly sensitive information.

If you have questions about security at DEX or need guidance, please contact your DEX representative or click the Contact Us button below.