Security

Effective Date: 12th May 2023

This Security and Compliance Policy (“Policy”) applies to all services offered by Pranit Bauva, referred to collectively as the “Services”. This Policy outlines our commitment to protect the data of our customers and to comply with applicable laws and regulations.

1. Data Protection

We implement robust security measures and controls to protect customer data, including encryption in transit and at rest, network and application firewalls, and strict access controls.

2. Compliance with Laws and Regulations

We commit to comply with all applicable laws and regulations related to data protection and cybersecurity, and others, depending on the jurisdictions we operate in.

3. Third-Party Vendors

All third-party vendors who have access to our data or systems are required to comply with our security requirements and are subject to regular security reviews.

4. Employee Training

All employees are required to complete security and compliance training upon hiring and annually thereafter.

5. Incident Response and Management

We maintain an incident response plan that includes procedures for effectively addressing security breaches or incidents.

6. Authentication

Nirah uses Bearer Token authentication for API access and OAuth for access to dashboard

7. Business continuity

Nirah has processes and policies in place to ensure the business continuity of its systems and operational. Production systems all have redundancies, and are configured for automatic failover and automatic scaling.

8. Changes to the Policy

We reserve the right to change this Policy from time to time. If we make changes, we will notify you by revising the date at the top of the Policy and, in some cases, provide you with additional notice.

9. Contact Us

If you have any questions about this Security & Compliance Policy, please contact us at [email protected] and would be read by only the core members.