Security Information

ecodia is committed to protecting the security and integrity of our platform and the data entrusted to us by our users. We maintain a comprehensive information security programme that is reviewed and updated regularly to address emerging threats. Our security practices are aligned with industry standards and relevant regulatory requirements.

The ecodia platform is hosted on enterprise-grade cloud infrastructure with built-in redundancy, automatic failover, and geographic distribution. All systems are monitored continuously for performance, availability, and security events. We conduct regular infrastructure audits and penetration testing to identify and remediate potential vulnerabilities.

All data transmitted between your device and ecodia is encrypted using TLS 1.3. Data at rest is encrypted using AES-256 encryption, and encryption keys are managed through a dedicated key management service with strict access controls. Database backups are encrypted and stored in geographically separate locations to ensure data durability and disaster recovery capability.

We implement the principle of least privilege across all systems, ensuring that personnel only have access to the data and systems necessary for their role. Multi-factor authentication is required for all staff accessing production systems. Access logs are maintained and reviewed regularly, and access is revoked promptly upon role change or departure.

ecodia maintains a documented incident response plan that is tested and updated regularly. In the event of a security incident, our response team follows established procedures for containment, investigation, remediation, and communication. We are committed to transparent communication with affected users and relevant authorities in accordance with applicable breach notification laws.

We welcome reports from security researchers who discover potential vulnerabilities in our platform. If you identify a security issue, please refer to our Responsible Disclosure Policy for guidelines on how to report it. We are committed to working collaboratively with the security community to keep ecodia safe for all users.