Contact

Legal

Security Statement

Last updated May 2026

Information security is central to how EASTMAR designs systems for clients and runs its own. This statement summarises our approach. It does not, by itself, create contractual commitments — specific obligations are set out in engagement agreements.

1. Our approach

We build secure-print, document-management and server-infrastructure solutions tailored to each organisation, with security considered from the design stage rather than added afterwards. Controls are matched to each client’s risk profile and regulatory obligations.

2. Data residency

For engagements where it is required, client workloads and data are hosted and managed in Oman, under our operational responsibility, so they remain subject to Omani jurisdiction. This marketing website itself is informational and does not hold client data.

3. Technical and organisational measures

  • Encryption of data in transit and, where appropriate, at rest.
  • Role-based access control and the principle of least privilege.
  • Logging, monitoring and regular review of access to sensitive systems.
  • Backup and recovery arrangements scoped to each engagement.
  • Staff awareness and confidentiality obligations.

4. Standards and certification

We align our practices with recognised information-security frameworks. Where formal certifications are in progress or planned, we describe their status honestly and do not claim certifications we do not hold. Current status is shared on request under engagement.

5. Reporting a concern

If you believe you have found a security vulnerability affecting our website or services, please report it to support@eastmar.om with enough detail for us to reproduce and investigate. We ask that you give us reasonable time to remediate before any public disclosure.

6. Contact

For security questions, contact support@eastmar.om.