Security

Security FAQs for Ordenance

How Does Ordenance Keep My Data Secure?

Ordenance employs advanced encryption and technical safeguards to protect your data. Our security measures include:

  • Encryption: Data is encrypted at rest using AES-256 and in transit with HTTPS over SSL/TLS. Passwords are encrypted with salted hashes.
  • Network Security: We use firewalls and network segmentation to secure internal services and APIs.
  • Multi-Factor Authentication (MFA): Available for user logins, enhancing account security.
  • Regular Audits: Automated security and vulnerability scans, coupled with regular third-party audits.
  • Data Minimization: Application logs are retained for a limited period and then securely deleted.
  • Bot Traffic Detection: We employ CAPTCHA challenges and IP throttling to prevent unauthorized access.
How Does Ordenance Ensure My Privacy?

We take your privacy seriously and comply with all applicable UAE data protection laws. We do not share nonpublic information with any third parties unless legally required or explicitly authorized by you. Our Privacy Policy provides detailed information on how we collect, use, and protect your data.

Does Ordenance Encrypt User Data?

Yes, Ordenance uses robust encryption standards to protect your data. We encrypt data at rest and in transit and ensure that all sensitive information, including passwords, is securely hashed.

How Does Ordenance Prevent Unauthorized Access?

Ordenance stores customer data in secure data centers with state-of-the-art physical and information security measures. These facilities are managed by trusted third-party providers, and access to the servers is strictly controlled and monitored. Additionally, all customer data is accessed through secure VPNs.

Is Ordenance GDPR Compliant?

While Ordenance meets many international data protection standards, we are currently focusing on compliance with UAE data protection laws. We are working toward full GDPR compliance as we expand our services to other regions.

What User Information Does Ordenance Store?

We store user information such as emails, passwords, billing information, uploaded documents, and metadata like file size and name. Additionally, we log certain user actions to help resolve issues and improve our service. All stored data is securely protected and can be deleted upon request.

How Does Ordenance Respond to Government or Law Enforcement Requests for Data?

We comply with legal requests as required by UAE law, ensuring that any data shared is limited to the specific requirements of the request. All requests are carefully reviewed to ensure they comply with applicable laws and our commitment to user privacy.

Does Ordenance Support Single Sign-On (SSO)?

Yes, Ordenance supports single sign-on (SSO) through major providers like Google and Microsoft. Our enterprise edition also supports custom SSO configurations.

Does Ordenance Have a Penetration Testing (Pentest) Policy?

Yes, we conduct regular penetration testing to identify and address potential security vulnerabilities. For more details or to request our Pentest Rules of Engagement, please contact our security team.

How Can I Report a Security Vulnerability to Ordenance?

If you discover a security vulnerability, please report it to us immediately by contacting our security team at [Insert Contact Information]. We respond to all inquiries within 3 business days or less.

How Does Ordenance Make Money?

Ordenance generates revenue through subscriptions. We do not sell or share user data with third parties, in line with our strict privacy policies.

Does Ordenance Sell or Share the Data I Upload?

No, Ordenance does not sell or share your data with any third parties, except as required by law or with your explicit consent. Our Privacy Policy provides detailed information on data handling practices.