Security at vic.ai
SOC1 & SOC2 TYPE2 COMPLIANCE
Vic.ai is SOC1 and SOC2 Type 2 compliant, which assures that we have the highest standard of security around our financial reporting. The SOC2 is considered to be a gold standard for data security and is specifically designed for service providers storing customer data in the cloud. The audit was developed by the American Institute of Certified Public Accountants (AICPA).
Vic.ai is committed to the safe and efficient management of data, with principles developed to provide a consistent approach to managing data and keeping it secure. To prevent unauthorized access or disclosure, we have suitable physical, electronic, and managerial procedures to safeguard and secure data collected.
Vic.ai uses secure connections for all data transfers (TLS). Data is encrypted at rest in our databases.
Vic.ai has an incident response policy in place that applies both to incidents reported by customers or third parties, as well as issues detected automatically by our monitoring.
All Vic.ai employees undergo industry standard vetting and background checks during the hiring process to ensure suitability. Only those operational staff, required as part of their role and responsibilities have access to our data, tools, and apps. Access is controlled, logged, and managed by enterprise password manager apps and a variety of authentication types.