Skip to main content

Compliance and Security

We adhere to various security and privacy regulations, including:

GDPR (General Data Protection Regulation):
We comply with GDPR for users located in the EU, ensuring that personal data is collected and processed lawfully, transparently, and for specific purposes.
SOC 2:
Our platform follows the SOC 2 standards for security, availability, and confidentiality, ensuring that data is processed securely and reliably.

2. Data Encryption and Protection Policies

We implement various encryption and data protection mechanisms to safeguard user data:

Encryption:
Data is encrypted both in transit (using SSL/TLS) and at rest (using AES-256).
Access Controls:
Only authorized personnel have access to sensitive user data. Role-based access controls ensure that users only have access to the data they need.

3. Risk Management and Security in Data Processing

We continuously monitor and manage risks related to data processing:

Regular Audits:
Security audits are performed regularly to identify vulnerabilities.
Incident Response:
In the event of a security breach, we follow a predefined incident response plan to mitigate damage and inform affected users.
Data Backup:
Critical data is regularly backed up to prevent loss in case of hardware failure or other issues.

1. Compliance with Security Regulations (GDPR, SOC 2, etc.)
2. Data Encryption and Protection Policies
3. Risk Management and Security in Data Processing