Data Privacy and Security
At Varex, we prioritize data privacy and security. We understand that the data you entrust to us is a vital asset to your business, and we treat it with the utmost care.
Security Measures
Varex
- We encrypt all data at rest and in transit using TLS.
- Our database and application run on AWS infrastructure.
- We use Point-in-Time Recovery (PITR) with database backups and Write Ahead Log.
- All users have access to SSO (Single Sign-On) through OAuth 2.0 with Google and GitHub. We can enforce SSO for your organization (Team plan and above) to require 2FA (Two-Factor Authentication).
- For security inquiries, please contact us at [email protected] s
Privacy Measures
- For our Privacy Policy, see: Privacy Policy (opens in a new tab)
- For Data Subject Access Request Form, see: Data Subject Access Request Form (opens in a new tab)
- We can provide a DPA (Data Processing Agreement) and subprocessor list upon request.
- For privacy inquiries, please contact us at [email protected]
Compliance Measures
We are actively working towards achieving SOC 2 and ISO 27001 compliance.
For specific compliance requirements or questions, please contact us at [email protected]
Responsible Disclosure of Security Vulnerabilities
We value the security community and prioritize system security. We encourage the disclosure of security vulnerabilities to help us protect the security and privacy of our users. Please send actionable vulnerability reports to [email protected].