Last updated: November 2025
All data transmitted between your browser and our servers is encrypted using TLS 1.3. Data at rest is encrypted using AES-256 encryption.
Our infrastructure is hosted on industry-leading cloud providers with SOC 2 Type II certification. We implement network segmentation, firewalls, and intrusion detection systems.
We implement role-based access controls and the principle of least privilege. All access to production systems requires multi-factor authentication.
We maintain comprehensive audit logs of all system access and changes. Our security team monitors for suspicious activity 24/7.
We conduct regular security assessments and penetration testing. Vulnerabilities are prioritized and remediated according to their severity.
We have a documented incident response plan and will notify affected users within 72 hours of discovering a data breach that may affect their personal information.
If you discover a security vulnerability, please report it to us at info@ovanta.ai. We appreciate responsible disclosure.