The purpose of this security policy is to outline measures and guidelines to ensure the security and protection of sensitive data and information on Geofactor.
We promptly purge the modeling data you provide to us within 72 hours after the predictive model is ready.
Geofactor complies with the California Consumer Privacy Act (CCPA) and is committed to safeguarding your privacy. We are prepared to sign Data Protection agreements to further ensure the protection of your data. Additionally, we promptly respond to data access, do-not-sell, and data deletion requests as required by the CCPA. You can find the necessary forms to submit these requests on our Opt-out page.
Geofactor fully complies with the European General Data Protection Regulation (GDPR) and prioritizes the protection of your personal data. We are committed to signing Data Protection agreements to ensure the highest level of data security. We are also dedicated to promptly addressing data access, do-not-sell, and data deletion requests in accordance with GDPR requirements. As part of our compliance strategy, we have implemented a policy to immediately delete all European data as soon as we receive it.
Encryption at rest and in transit
To ensure the utmost security of your data, we have implemented robust encryption measures. Your data is encrypted both at rest and during transit, safeguarding it from unauthorized access. We have disabled unencrypted access and storage, further enhancing the protection of your sensitive information.
- We utilize Amazon Elastic Compute Cloud to serve our app and database. Access to these are restricted with appropriate security group policies.
- Additionally, we use Amazon Simple Storage Service to store data uploads temporarily. These files are encrypted and purged regularly.
Personally Identifiable Information (PII)
We require PII to match your data into our Predictive Models. This is a combination of:
- plaintext name
- plaintext postal address
All of your data never leaves U.S. geographic boundaries.