teleVoice is committed to safeguarding its customers and maintaining the highest security standards. To this end, we engage an independent third-party auditor to conduct a rigorous, annual SOC 2 examination. This comprehensive audit not only reviews but rigorously tests the effectiveness of our controls over critical areas relevant to the security of our teleVisor service. By undertaking this voluntary examination, teleVoice demonstrates our proactive stance on risk management and our dedication to upholding best practices in information security. This ongoing commitment reflects our priority to continuously improve our security protocols, ensuring our business and our offerings remain protected against evolving threats.
We value the security of our organization and the information we handle. In line with industry standards and regulations, we conduct a thorough pre-employment check on all new team members, followed by annual training and refreshers on security best practices, diving into important topics like managing passwords and keeping data private. Additionally, all employee workstations have centrally managed security controls to enforce full-disk encryption, strong passwords, USB restrictions, automatic locking, etc.
Safeguarding client data is our top priority. To achieve this, we utilize encryption methodologies that align with industry best practices. Both during data transit and at rest, we employ encryption techniques to make sure that the data remains confidential and is resistant to tampering. By doing this, we can confidently say that even if data is intercepted during transmission, it would be unreadable and secure from potential threats.
Trust is the foundation of our client relationships. teleVoice has stringent data handling and retention protocols in place. Client data is always treated with the utmost respect and is only utilized for agreed-upon purposes. Once our contractual commitments are met, we ensure data is either safely returned or deleted, maintaining client trust.
We believe in proactive defense. Our routine vulnerability assessments, which are systematically scheduled, help us spot and fix potential weaknesses in our infrastructure. Our trained infrastructure and support team is continuously reviewing the findings of those assessments to ensure vulnerabilities are remediated in a timely manner.
To further bolster data access security, multi-factor authentication is used across all production systems hosting the teleVisor application. Further, SSO is enabled across all supporting systems and applications wherever possible. By employing this layered security approach, we can ensure that sensitive data remains accessible only to verified individuals.
Understanding the importance of data integrity and business continuity, teleVoice maintains regular backups in geographically dispersed locations. Disaster recovery testing is conducted on an annual basis to ensure internally defined RTO, RPO, and MTD is consistently met. Should any unforeseen data issue arise, our recovery processes are robust and poised to restore data integrity swiftly.
While we always aim for smooth operations, we’re also prepared for the unexpected. If a security incident occurs, our trained Incident Response Team (IRT) immediately steps in. They’re skilled at quickly identifying, isolating, and mitigating threats to ensure minimal disruption. Regular training ensures that IRT can adapt and respond efficiently to emerging security scenarios.
Our secure software development life cycle incorporates secure programming best practices to protect against vulnerabilities which is at the heart of our security first approach. Every alteration to our platform or infrastructure doesn’t just pass through human eyes, it’s also subjected to methodical automated scans. These measures identify flaws, external library threats, and ensure no hidden secrets exist within our code. Further, our team of developers participates in annual developer trainings that cover OWASP best practices.
Navigating the global compliance landscape requires expertise, and teleVoice is proud to have a specialized compliance team to lead training, communicate essential changes, and interact with regulatory entities. Our forward-thinking approach and dedication make sure that Ratings.MD is always in line with compliance standards, solidifying our reputation as a trusted and compliant business partner.