Cloud Security Alliance STAR Registry
APEX Regulation Guide is listed on the CSA STAR Registry with a completed CAIQ v4.1.0 self-assessment, documenting our security controls aligned with the Cloud Controls Matrix (CCM).
Data Encryption
- TLS 1.3 encryption for all data in transit
- Secure HTTPS connections enforced
- Encrypted database connections
- Secure API authentication tokens
- Regular security audits
Infrastructure
- Hosted on Vercel Edge Network (global CDN)
- Secure cloud database infrastructure
- Automatic backups and disaster recovery
- 99.9% uptime target
- DDoS protection enabled
Access Control
- Secure authentication via Clerk
- Two-factor authentication (2FA) support
- Session management and timeout
- SSO integration (Enterprise plan)
- Role-based access for teams
Compliance
- UAE PDPL compliant (data protection)
- PCI-DSS compliant payments via Stripe
- Privacy by design principles
- Data export and deletion on request
- Transparent privacy policy
AI Processing Security
When you use our AI-powered search and analysis features:
Security Vulnerability Reporting
If you discover a security vulnerability in APEX Regulation Guide, please report it responsibly. We appreciate your help in keeping our platform secure.
security@apex-reg.comPlatform Security Updates
We continuously enhance our UAE building regulations platform with new security features, compliance tools, and infrastructure improvements.
APX-2026-021701
PDF Serving Migration & Cloudflare R2 Integration
Major infrastructure update migrating official regulation PDFs (Dubai Building Code, DEWA, Civil Defense, Abu Dhabi UPC) to Cloudflare R2 edge storage. This update improves document loading speeds and ensures reliable access to source materials.
APX-2026-010502
Qdrant Vector Database & Semantic Search Launch
Introduced semantic search powered by Qdrant vector database and OpenAI embeddings. 3,000+ regulation chunks from Dubai Building Code, Civil Defense Fire Code, Al Sa'fat, Abu Dhabi UPC indexed with article-level metadata.