Yes, Vaultedge encrypts all data at rest using industry-standard AES-256 encryption to safeguard sensitive information from unauthorized access.

Yes, Vaultedge strictly follows the principle of least privilege, ensuring that users have only the minimum level of access required to perform their roles effectively. Access permissions are periodically reviewed and adjusted accordingly.

Yes, Vaultedge requires multi-factor authentication (MFA) for all remote access to our information assets, providing an additional layer of security to prevent unauthorized access.

Yes, Vaultedge has a formal change management policy in place to govern all changes to our systems. This policy ensures that all changes are thoroughly reviewed, tested, and approved before implementation.

Yes, Vaultedge conducts quarterly reviews of privileged account access to ensure that only authorized personnel have access to critical systems and sensitive data.

Yes, Vaultedge has a comprehensive incident response plan that is regularly updated and tested to ensure swift and effective responses to any security incidents.

Yes, Vaultedge maintains a business continuity plan, which is tested annually to ensure that our services remain available during unexpected disruptions.

Yes, Vaultedge employs data loss prevention (DLP) technology to monitor, detect, and prevent potential data breaches or unauthorized data transfers.

Yes, Vaultedge conducts an annual review of all user entitlements across our systems, with managerial signoff required to ensure access rights are appropriate and justified.

Yes, Vaultedge has a robust cloud security policy that governs the use of cloud services, ensuring that our cloud infrastructure remains secure and compliant with industry standards.

Yes, Vaultedge retains security logs for a minimum of 90 days, allowing for comprehensive analysis and auditing of security events.

Yes, Vaultedge conducts annual penetration tests through certified third-party security firms to identify and address any vulnerabilities in our systems.

Yes, Vaultedge has a comprehensive privacy management program in place to ensure the protection of personal data throughout its lifecycle—during transit, usage, and storage—in compliance with relevant regulatory requirements.

Yes, Vaultedge’s information asset register identifies assets that contain privacy-related data, ensuring that proper security controls are implemented to protect such data.

Yes, all Vaultedge employees are trained on their responsibilities to protect personal information during onboarding and through ongoing security awareness programs.

Yes, Vaultedge regularly reviews and tracks applicable laws, regulations, and compliance requirements to ensure continuous compliance with security and privacy standards.

Yes, Vaultedge has a formal breach notification process in place, and all employees are trained on how to recognize and report a data breach, ensuring timely notification to affected parties and regulatory authorities.

Vaultedge enforces a password policy that includes the following complexity standards:

• Minimum Length: Passwords must be at least 8 characters long.
• Character Requirements: Passwords must include a mix of the following:
• At least one uppercase letter (A-Z)
• At least one lowercase letter (a-z)
• At least one digit (0-9)
• At least one special character (e.g., !, @, #, $)
• No Reuse of Old Passwords: Users are not allowed to reuse their last three passwords.
• Account Lockout: Accounts get locked after multiple failed attempts to ensure security, and access tokens are refreshed every 30 days.

These measures are designed to maintain the integrity and confidentiality of data on our platform. We recommend that all users adhere to these guidelines to uphold a high level of security.