Introduction
At MITE3 Cybersecurity, we take security seriously. As a cybersecurity company, we believe it’s important to lead by example. That’s why we maintain high standards to protect our employees, clients, partners, and organization.
Security Measures
- Data transfer and storage are encrypted according to current standards.
- Protection against malware, exploits, and ransomware is active wherever technically possible.*
- Data storage is supported with version control and/or encrypted backup replication.*
- Backups and archives are retained in accordance with applicable retention periods.*
- Accounts use strong passwords and two-factor authentication.
- Access is granted based on the Least Privilege Principle.
- Authentication and identification are required for every access request.
- Security patches are installed within one month of release.
- We only use software, hardware, and services that are supported and not classified as ‘End-of-Life.’
- System configurations are securely set up prior to use.
- Publicly accessible systems are protected with (application) firewalls and anti-DDoS measures.*
- Our email is secured with SPF, DKIM, DMARC, and MTA-STS.*
- Our websites, applications, and APIs are secured with modern web security headers, including Content-Security-Policy, Strict-Transport-Security, Referrer-Policy, Permissions-Policy, and X-Content-Type-Options.*
- Personal data is processed in line with the GDPR and other applicable laws and regulations.
- We are transparent about security incidents, data breaches, legal requests, and vulnerability reports.
*) These measures depend on technical availability and may not be applicable in all environments.
Domains We Use
We use a limited number of official domains.
Only the domains listed below are managed by us. Websites, apps, APIs, or emails that use other domain names do not originate from MITE3.
Our official domains are:
mite3.nlmite3.commite3.link(URL shortening service)datalekt.nl
We also use subdomains on our official domains.
We additionally own a number of redirect domains that are used solely for forwarding to our primary domains. These domains:
- host no content
- send no email
- never ask for login credentials
- never display forms
A complete overview of these redirect domains is available upon request.
Email Authenticity
All email communication from MITE3 originates exclusively from the domains listed below:
mite3.nlmite3.com
We use subdomains within these domains (for example for applications or automated messages), but we do not use any other domains for sending or receiving email.
Did you receive an email that appears to be from MITE3, but does not end with one of the domains above?
Treat it as suspicious and, if in doubt, contact us via [email protected].
Domains That Are Not Ours
Sometimes domains are registered that resemble our brand name. These domains are not managed by MITE3 and may be used for deception, phishing, or other forms of abuse.
Domains we have identified that are not ours:
mite3-insight.com
Have you come across a domain that looks like MITE3 but is not in our list above?
Please contact us immediately at [email protected].
We actively investigate these reports and take action where necessary.
Suspected Phishing or Abuse
Are you unsure about the authenticity of a website, message, or email claiming to be from MITE3?
Please forward it to [email protected]. We will gladly investigate reports and take action if necessary.