Secure from the infrastructure up.

Where is UnityTrip hosted?

UnityTrip runs on Microsoft Azure. Azure's infrastructure is independently audited and maintains SOC 2, ISO 27001, and a range of other internationally recognised certifications. By building on Azure, UnityTrip inherits enterprise-grade physical, network, and platform security as the foundation of the service.

Built on Microsoft Azure

UnityTrip is a member of the Microsoft AI Cloud Partner Program (ISV Success) and is available on the Microsoft Azure Marketplace.

UnityTrip inherits the assurance of Azure's certified infrastructure. Where an organisation requires UnityTrip's own audit documentation, please get in touch.

How does UnityTrip protect customer data?

• Encryption — data is encrypted in transit and at rest.
• Role-based access control (RBAC) — users and operations staff access only what they are authorised to.
• Zero-trust architecture — every request is authenticated and authorised, with no implicit trust between components.
• Centrally managed credentials — service credentials are held in Azure and rotated rapidly, containing any suspected compromise in minutes.
• Infrastructure as code — every environment is reproducible and every configuration change is auditable.
• Event-sourced audit trail — every booking, change, and approval is recorded as an immutable event, giving a complete, tamper-evident history.
• Credential management for staff, contractors, and dependents is handled securely and flexibly, reflecting shifting roles and travel privileges.

Is UnityTrip suitable for security-conscious enterprises?

Yes. UnityTrip runs in production for organisations with demanding compliance and operational requirements, including in regulated sectors such as energy and resources. The architecture is designed to support vendor management, travel-policy compliance, and full data oversight — so security and operational control reinforce each other rather than trading off.