📄 SECURITY POLICY — ProxSocial

A product of DEVIPROX LTD

Last Updated: November 2025

1. Introduction

ProxSocial (“the Platform”), operated by DEVIPROX LTD (“the Company”), is committed to ensuring the confidentiality, integrity, and availability of all data processed through our systems. This Security Policy outlines the measures we implement to protect user data, maintain platform reliability, and mitigate risks from unauthorized use, cyber threats, or system misuse.

2. Data Protection Framework

We follow industry-standard security principles and employ administrative, physical, and technical safeguards in accordance with global best practices.

These include:

Encryption in transit (HTTPS/TLS 1.2+).
Encrypted storage for sensitive credentials.
Strict access control and role-based permissions.
Continuous system monitoring and anomaly detection.

3. Infrastructure Security

Our infrastructure is hosted on reputable cloud service providers with strong compliance certifications (ISO 27001, SOC 2, GDPR-ready).
Measures include:

Firewall and network segmentation
Automated security patches
Redundant infrastructure for uptime
Disaster recovery procedures and backups

4. Application-Level Security

To keep ProxSocial secure:

We use secure coding practices and routine code reviews.
Implement rate-limiting and anti-abuse protections.
Conduct third-party security audits when necessary.
Protect logins with multi-factor authentication (MFA) when supported.

5. User Responsibilities

Users must:

Keep login credentials confidential.
Enable MFA where available.
Notify DEVIPROX LTD of suspicious activity immediately.
Use strong, unique passwords.

6. Incident Response

In the event of a security incident, we follow a structured response procedure:

Identify and contain
Assess impact
Remediate
Notify affected users as required by law
All incidents are documented and reviewed for process improvement.

7. Contact

To report vulnerabilities or security concerns:
📧 proxassist@deviprox.com