AVIRA DIGITAL - TRUST

Security and Infrastructure

Data security is paramount for AviraDigital and our customers. AviraDigital protects customer data with world-class physical, network, application, and data-level security, we invest in the most advanced and modern infrastructure available to provide an innovative, scalable, global, predictable, and secure environment.

Infrastructure

AviraDigital leverages the most advanced cloud infrastructure to provide an innovative, scalable, global, predictable, and secure environment.

AviraDigital products and Services are hosted on Salesforce’s platform, AWS Infrastructure and on GCP.

For more information about Salesforce’s security program see here. Salesforce is Privacy Shield certified and has entered into the EU Model Clauses and a Business Associate Agreement (HIPAA) with AviraDigital. To ensure conformance with local regulations, application data resides and is backed-up in key geographic regions as described in this Salesforce.com help page.

AviraDigital uses Amazon Web Services (AWS) as its primary cloud infrastructure provider to meet our customers growing needs. AWS is Privacy Shield certified and has entered into the EU Model Clauses and a Business Associate Agreement (HIPAA) with AviraDigital. See further AWS Certifications. To ensure conformance with local regulations, application data resides and is backed-up in key geographic regions U.S. (West and East Coast), Asia (South).

AviraDigital users services from GCP as its primary cloud provider for AI tooling, and ML trainings. GCP is certified with multiple regulatory authorities as listed out at Google Compliance, ISO, GDPR, and SOC2 Controls are available to verify.

SERVICE ORGANIZATION CONTROLS

AviraDigital regularly passes rigorous third-party compliance audits of our robust security, confidentiality, and availability controls. AviraDigital data centers and service providers also publish SSAE16 SOC1 Type II and SOC2 reports. These reports confirm that AviraDigital delivers fully secure and reliable, high quality operating standards in its data center operations, including provisioning, management and monitoring of the hardware, network, and firewall. All of these reports are for limited distribution and shared under confidentiality agreement (CDA). Please direct all requests through ciso@aviradigital.com

ISO (INTERNATIONAL ORGANIZATION FOR STANDARDIZATION) 27001

AviraDigital has achieved ISO (International Organization for Standardization) 27001 certification for our Information Security Management Systems (ISMS), covering various AviraDigital products and supporting infrastructure. ISO 27001 is a globally recognized security standard that provides a guideline of the policies and controls that an organization has in place to secure their data. The standard sets out internationally agreed upon requirements and best practices for the systematic approach to the development, deployment and management of a risk/threat-based information security management system.

EU General Data Protection Regulation

Data For AviraDigital Customers: AviraDigital offers a Data Processing Addendum to enable its customers to comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws. Where AviraDigital transfers EU personal data from a country that is not considered to have an adequate level of data protection, AviraDigital and its customers can rely on Standard Contractual Clauses. Please direct all requests through dpo@aviradigital.com

For Individuals: This section provides specific information about how AviraDigital complies with the EU General Data Protection Regulation (“GDPR”). It supplements the information contained in the rest of our Privacy Statement and applies to all data subjects residing in the European Union.

SHAMKRIS GLOBAL INSPECTION SERVICES (SGIS) is an independent certification body(CB), set up to provide certifications IAS (International Accreditation Service, U.S.A and accredited certifications to various schemes like ISO 9001, ISO 14001, ISO 45001, ISO 22000, ISO 13485, ISO 27001 and others as the market demands.

Our company is fully GDPR-compliant. To learn more about how we comply with GDPR and, as a result, care for the security and privacy of personal data we collected from you, visit https://aviradigital.com/privacy