Security & Safety Guide

Privacy

We maintain a comprehensive privacy program.

• We do not sell the personal information of our customers to third parties
• We are compliant with General Data Protection Regulations (GDPR).
• You can find our privacy policy at: https://www.ativsoftware.com/legal/privacy-policy/

User Account Security

Limited access to authorized users helps keep data secure.

• Password-protected client access with username/password authentication per user
• Users are associated with specific projects
• Clients can set up various authentication levels for end-user content access
• All authentication requests are sent over HTTPS

Reliability

Reliable uptime for a smooth experience.

• 99.9% uptime 
• Additional internal tools are used to further monitor availability and performance
• Automatic backup system

Payments 

Client payments are processed via certified payment providers.

• PCI-DSS Level 1 Service Providers
• All card numbers are encrypted at rest with AES-256

Web and Mobile Application Development

Our developers conduct regular security reviews.

• All systems are scanned regularly for common security vulnerabilities
• No credit card information is permitted to be stored on any mobile device
• All web and mobile applications are primarily developed, tested, deployed, and maintained by a full-time, in-house engineering team

App Distribution

Native apps are distributed through the official app distributors.

• Apple App Store
• Google Play Store (plus via direct apk download link from the client website)
• Additional web application for mobile and desktop access via SSL connections

Incident Response

We understand that no computer system is perfectly secure.

• In the event of a breach of an ATIV information system, we have a detailed Incident Response Plan in place
• If you find a vulnerability, please report it to us at support-at-ativsoftware-dot-com