TermCo
Demo

Security Practices

Effective Date: 1/1/2025

At TermCo, we prioritize the security of your data and take proactive steps to ensure it remains safe. This document outlines the measures we have in place to protect your information.

Infrastructure Security

1. Secure Hosting

  • All data is hosted on Google Cloud, a trusted provider with state-of-the-art security features.
  • Data is encrypted at rest and in transit using industry-standard protocols.

2. Isolation of Customer Data

  • Each customer’s data is strictly segregated to prevent unauthorized access.
  • No customer has access to another customer’s information.

Application Security

1. Data Encryption

  • All sensitive data is encrypted using advanced encryption standards.
  • Communication between systems is secured with HTTPS and TLS protocols.

2. Access Control

  • Access to systems and data is restricted to authorized personnel only.
  • Role-based access control (RBAC) is implemented to minimize privileges.

3. Regular Security Audits

  • Periodic reviews and audits are conducted to identify and resolve vulnerabilities.
  • External penetration testing is performed to ensure system robustness.

Third-Party Integrations

1. OpenAI API

  • Only small, specific portions of data are sent to OpenAI’s API.
  • OpenAI does not store or use this data for training purposes.

2. Migration to Hugging Face

  • We are transitioning to Hugging Face for enhanced flexibility and security.
  • This migration will enable the use of dedicated private instances for each customer, further enhancing data isolation and control.

Incident Response

1. Monitoring and Detection

  • Systems are monitored 24/7 for unauthorized access and anomalies.
  • Alerts are configured to notify the team immediately in case of suspicious activity.

2. Response Plan

  • A documented incident response plan ensures quick action in the event of a security breach.
  • Customers are notified promptly if their data is impacted.

Your Role in Security

We encourage customers to take the following steps to enhance security:

  • Use strong, unique passwords for your accounts.
  • Enable two-factor authentication (2FA) where applicable.
  • Report any suspicious activity to support@termco.ai.

Thank you for trusting TermCo with your data.