Security by Design

Kandy UC employs multiple layers of security to protect against unwanted intrusion and to protect your organization’s communications and content. Our security design follows three fundamental principles: restrict, encrypt, and minimize.

Stringent security standards


Guarding against unwanted intrusion or denial or service attacks is one of our highest priorities. Kandy Business utilizes state of the art firewalls and session border controls to restrict and abstract access to Kandy, ensuring that only the wanted traffic is routed to the designated systems.

Kandy’s carrier-grade, geographically redundant nodes are hosted in secure top-tier data centers throughout the world. These data centers provide high-tech physical security, redundant power and cooling systems, and are SSAE 16/SAS 70 certified. 


Communications between users and the Kandy Business service are architected to meet or exceed today’s most stringent security standards. Encryption of SIP signaling and media streams includes best in class VPNs between sites as well as TLS, and SRTP.   This ensure that both signaling and media traffic is secured, point to point. 


We take every precaution to limit the amount of personal user data that could be subject to exposure, maximizing privacy wherever possible.  We strive to limit data acquisition to only the content required for account activation.  For active accounts, we strive to store only the data required for billing.  

Calculator: On-Premise vs. Cloud PBX

Calculate the TCO between an On-Premise PBX vs. Cloud Hosted PBX

Secure account access

Personal Call Restrictions

User can restrict access from inappropriate callers with services such as anonymous call block and per phone number routing rules. Organizations can also use the Kandy portal to minimize potential issues with toll abuse or phone access outside of business hours.  The portal offers per line call restrictions including international call restrictions, external call restrictions and the option to limit calls exclusively to other employees.

Secure Administrative Access

Kandy Business not only protects communications, it also provides the tools needed to effectively secure your account.  Kandy’s portal requires SSL/HTTPS access, is partitioned by domain, and has separate, secure logins, per admin. 

Expect the Unexpected

Kandy UC’s operations team routinely performs security assessments, intrusion detection tests and continually updates its security practices to address potential vulnerabilities. 


Please enter your first name
Please enter your last name
Please enter your company
Please enter Job Title
Please enter your Message
Thank You!
Thank you for visiting us A Nuvia representative will be contacting you soon.