Security control area
Infrastructure, network, endpoint, and secure development controls protecting Toku production systems.
Toku's production environment runs in SOC 2 Type II certified US cloud regions. All inbound traffic passes through a web application firewall for DDoS mitigation, bot detection, and request filtering. Internal access to production requires zero-trust network access, and production, staging, and development environments are fully network-isolated.
Every Toku employee device is required to meet endpoint detection, device management, patch compliance, VPN, and monitoring requirements before accessing production systems. Endpoint compliance is actively enforced.
All code changes require mandatory peer review before reaching production. Continuous dependency scanning, independent security reviews, quarterly penetration testing, compliance evidence collection, and PII-excluded monitoring validate the security posture.
