Home / Legal / Security Policy
Legal

Security Policy

Last updated: 23 June 2026 · autovella.com

Template notice. This document is a starting template for the Autovella website and is not legal advice. Have it reviewed and tailored by qualified counsel for your jurisdiction (GDPR, UK GDPR, India DPDP Act, CCPA, etc.) before relying on it.

Autovella’s commitments and practices for protecting customer data.

Our commitment

Security is foundational to Autovella. We apply defense-in-depth across our application, infrastructure and operations. See Security & Compliance for details.

Encryption

Data is encrypted in transit (TLS 1.2+) and at rest (AES-256).

Access control

Least-privilege access, role-based permissions, and SSO/SCIM for Enterprise. Internal access is logged and reviewed.

Monitoring & response

We monitor for threats and maintain an incident-response process with defined severity levels and timelines.

Vulnerability management

We patch regularly, run dependency and code scanning, and welcome responsible disclosure at sales@autovella.com.

Backups & recovery

Automated, encrypted backups with tested recovery procedures.

Compliance

We align our program with SOC 2 and ISO 27001 control frameworks and support GDPR obligations.

Contact

Questions about this policy? Email sales@autovella.com or visit our contact page.