Security Compliance at Aviatrix
SOC 2 Type 2 Report
We work with an independent auditor to maintain a SOC 2 Type 2 report, which objectively certifies our controls to ensure the continuous security, availability, confidentiality, and integrity of our customers’ data. Developed by the Assurance Services Executive Committee (ASEC) of the AICPA, the Trust Services Criteria is the set of control criteria to be used when evaluating the suitability of the design and operating effectiveness of controls relevant to the security, availability, or processing integrity of information and systems, or the confidentiality or privacy of the information processed by the systems at an entity, a division, or an operating unit of an entity.
Stringent Security Controls
-
Employee TrainingsSecurity is a company-wide endeavor. All employees complete an annual security training program and employ best practices when handling customer data.
-
Penetration TestsAviatrix works with industry leading security firms to perform annual network and application layer penetration tests.
-
Secure Software DevelopmentAviatrix utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.
-
Data EncryptionData is encrypted both in-transit using TLS and at rest.
Data Security, Privacy and Compliance
Being in the secure networking business means holding our own internal programs to the highest of standards. The team at Aviatrix is committed to achieving and maintaining the trust of our customers, partners, and employees through these efforts. If you have any compliance or privacy questions please contact us at [email protected].
-
SOC 2 Type II
Aviatrix has achieved a SOC 2 Type II attestation from a certified auditor with no exceptions in the final report. We work with Drata, a certified audit firm to evaluate our information security program and controls on an annual basis and continuously monitor those controls using the Aviatrix platform.
-
General Data Protection Regulation (GDPR)
At Aviatrix, we are strong supporters of privacy, and we adhere to GDPR and other privacy regulations in everything we do. For more information, please visit our privacy policy, or to make a removal request please email [email protected].
-
California Consumer Privacy Act (CCPA)
Aviatrix will accept any removal request from any location as long as it is a valid request made by a qualified party. If you have a removal request please email [email protected] or visit our privacy policy.