Back to home

Security & Trust

We're committed to protecting your data and providing a secure platform you can trust. Learn about our security practices and how we keep your information safe.

Our Security Commitment

Travnex employs multiple layers of security to protect your data and ensure the reliability of our platform. Here's how we safeguard your information:

Data Encryption

All data is encrypted in transit and at rest using industry-standard protocols to ensure your information is always protected.

Secure Infrastructure

We use cloud infrastructure with advanced security features, regular security scans, and 24/7 monitoring.

Access Controls

Strong authentication with optional 2FA, role-based access control, and regular access reviews protect your account.

Compliance

We adhere to multiple security standards including SOC 2, GDPR, HIPAA, and more to ensure regulatory compliance.

Our Security Practices

We implement a comprehensive set of security practices to protect your data and ensure the reliability of our platform at every level.

Infrastructure Security

  • Cloud infrastructure with built-in security features
  • Network-level firewalls and intrusion detection
  • Regular vulnerability scanning and patch management
  • DDoS protection and mitigation

Data Protection

  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for data at rest
  • Secure key management with rotation policies
  • Isolated customer data environments

Access Controls

  • Multi-factor authentication
  • Principle of least privilege access
  • Regular access reviews and audits
  • Automated account provisioning and deprovisioning

Monitoring & Logging

  • 24/7 infrastructure and application monitoring
  • Comprehensive security logging and auditing
  • Anomaly detection and alerting
  • Regular security log reviews

Compliance

  • SOC 2 Type II compliance
  • GDPR and CCPA compliance
  • HIPAA compliance for healthcare data
  • Regular third-party security assessments

Incident Response

  • Documented incident response procedures
  • Regular tabletop exercises and simulations
  • Dedicated security response team
  • Customer notification protocols

Application Security

  • Secure development lifecycle
  • Regular code scanning and security reviews
  • Penetration testing and bug bounty program
  • Third-party dependency scanning

Business Continuity

  • 99.9% uptime SLA
  • Automated backups with encryption
  • Geo-redundant disaster recovery
  • Regular recovery testing

Compliance Standards

We adhere to internationally recognized security standards and compliance frameworks to ensure your data is handled according to industry best practices.

SOC 2 Type II

We've successfully completed SOC 2 Type II audits, demonstrating our commitment to security, availability, processing integrity, confidentiality, and privacy.

GDPR

Our platform is fully compliant with the EU's General Data Protection Regulation, ensuring proper handling of personal data with transparency and user control.

HIPAA

For healthcare customers, we offer HIPAA compliance with appropriate safeguards, Business Associate Agreements (BAAs), and audit trails for protected health information.

CCPA

We adhere to the California Consumer Privacy Act requirements, giving California residents control over their personal information.

ISO 27001

Our information security management system follows ISO 27001 standards, with regular risk assessments and continuous improvement processes.

Report a Security Vulnerability

We take security issues seriously. If you discover a potential security vulnerability in our systems, please let us know right away.

How to Report

Please report security vulnerabilities to our security team by emailing:

security@travnex.com

When reporting, please include:

  • Description of the vulnerability
  • Steps to reproduce the issue
  • Potential impact of the vulnerability
  • Any suggested mitigation or remediation

Our Commitment

We're committed to:

  • Acknowledging your report within 24 hours
  • Providing regular updates on our investigation
  • Addressing the vulnerability promptly
  • Properly crediting researchers who report issues (if desired)

Have Questions About Our Security?

Our team is ready to answer any questions you may have about our security measures and practices.

Contact Our Security Team