Security

• Cloud Security: Hosted on leading cloud providers with SOC 2 compliance.

• •Data Centers: Multiple geographic regions with redundancy.
• •Network Security: Firewalls, DDoS protection, and intrusion detection.
• •Monitoring: 24/7 automated monitoring and alerting.

• In Transit: All data transmitted using TLS 1.3 encryption.

• •At Rest: AES-256 encryption for stored data.
• •Keys: Secure key management with regular rotation.
• •API Communications: Encrypted endpoints with authentication.

• Authentication: Multi-factor authentication available.

• •Authorization: Role-based access control (RBAC).
• •Audit Logs: Comprehensive logging of all access.
• •Principle of Least Privilege: Minimal access rights for all users and systems.

• GDPR: Compliant data handling for EU users.

• •CCPA: California consumer privacy protections.
• •SOC 2: Following security principles and criteria.
• •Regular Audits: Ongoing security assessments.

• Vulnerability Scanning: Regular automated security scans.

• •Penetration Testing: Periodic third-party security assessments.
• •Secure Development: Security-first development lifecycle.
• •Incident Response: Documented procedures for security events.
• •Employee Training: Regular security awareness training.

• Backups: Regular encrypted backups with secure storage.

• •Retention: Clear data retention and deletion policies.
• •Isolation: Tenant data isolation in multi-tenant environment.
• •Privacy by Design: Security considered from the start.

• Use strong, unique passwords for your account.

• •Enable multi-factor authentication when available.
• •Keep your integration credentials secure.
• •Regularly review access permissions.
• •Report any suspicious activity immediately.

• Email: security@okidoki.chat

• •Include detailed information about the vulnerability.
• •Allow reasonable time for us to address the issue.

• Security Team: security@okidoki.chat

• •General Inquiries: support@okidoki.chat