Security at Vectyr
Your data security is our top priority. Here's how we protect your information and maintain trust.
Security at a Glance
Bank-level encryption (AES-256 + TLS 1.3)
SOC 2 compliance in progress
24/7 security monitoring
Annual third-party audits
Encryption
All data is encrypted in transit and at rest:
- •TLS 1.3 for all data in transit
- •AES-256 encryption for data at rest
- •Encrypted backups with automated retention
Authentication & Access Control
- •OAuth 2.0 for third-party integrations (Jira, GitHub, Slack)
- •Role-based access control (RBAC)
- •Multi-factor authentication (MFA) available
- •Secure session management with JWT tokens
Data Protection
- •Data hosted on AWS in secure, compliant data centers
- •Automated backups with point-in-time recovery
- •Data isolation: Each customer's data is logically separated
- •Secure deletion: Data permanently removed upon request
Infrastructure Security
- •Infrastructure as Code (Terraform) for consistent, auditable deployments
- •Network isolation with VPCs and security groups
- •DDoS protection and WAF (Web Application Firewall)
- •Regular security patches and updates to all systems
Security Monitoring & Testing
- •24/7 security monitoring and alerting
- •Regular penetration testing by third-party experts
- •Automated vulnerability scanning
- •Intrusion detection and prevention systems (IDS/IPS)
Compliance & Privacy
SOC 2 (In Progress)
- •Annual security audits and compliance certifications
- •Data Processing Agreements (DPA) available
- •Privacy by design: Minimal data collection, maximum protection
Incident Response
- •Documented incident response plan with 24/7 on-call team
- •Transparent communication: We'll notify you within 72 hours of any breach
- •Regular incident response drills and tabletop exercises
Questions About Security?
We're happy to discuss our security practices in detail.