Enterprise security,built in from day one
Claro protects the data you trust us with using the same standards we help you enforce. Encryption, isolation, and on-premise control are the foundation, not add-ons.
How we protect your data
Encryption at rest and in transit
All personal data is encrypted at rest with AES-256-GCM using per-tenant keys, and every connection is protected with TLS in transit.
Strict tenant isolation
Every record is scoped to a tenant. Row-level isolation keeps each organization's data fully separated, enforced on every authenticated request.
On-premise or private cloud
Deploy Claro entirely within your own infrastructure for full data residency and control, a common requirement for Indonesian banks and government bodies.
Role-based access control
Granular roles ensure people can only see and do what their job requires, from super admin down to individual learner.
Audit logging
Security-relevant actions are recorded in audit logs with sensitive values encrypted, so you can always answer who did what and when.
Privacy by design
Personal data is minimized, and per-user erasure plus crypto-erasure let you honor data subject rights under UU PDP and GDPR.
Data handling and residency
Data residency
Choose on-premise or a region that meets your residency obligations. Your data stays where you need it to.
Crypto-erasure
Deleting a tenant's encryption key renders all of that tenant's personal data permanently unreadable, a clean mechanism for the right to erasure.
Per-user erasure
Individual data subject erasure anonymizes a single user's personal data while preserving the integrity of your program records.
Retention controls
Configurable retention policies let you keep data only as long as you need it, aligned to your compliance posture.
Want the full security detail?
Our team can walk through architecture, deployment, and data handling for your environment.
Talk to our team