UpVerify Logo

Security Policy

Your security is our top priority. Learn about our comprehensive security measures.

SOC 2 Type II Certified

Our infrastructure meets the highest standards for security, availability, and confidentiality.

AES-256 Encryption

All data is encrypted in transit and at rest using military-grade encryption standards.

GDPR & CCPA Compliant

We adhere to international privacy regulations and data protection standards.

Audit Trails

Comprehensive logging and monitoring of all document activities and user actions.

Secure Infrastructure

Cloud infrastructure with redundancy, backups, and 99.9% uptime guarantee.

Access Controls

Role-based permissions and multi-factor authentication for enhanced security.

Data Encryption

All data transmitted to and from UpVerify is protected using Transport Layer Security (TLS) 1.3 encryption. Data at rest is encrypted using AES-256 encryption, ensuring your documents and personal information remain secure at all times.

Infrastructure Security

Our platform is built on enterprise-grade cloud infrastructure with multiple layers of security:

  • 24/7 monitoring and intrusion detection systems
  • Regular security audits and penetration testing
  • Automated backup systems with point-in-time recovery
  • Geographic redundancy across multiple data centers
  • DDoS protection and traffic filtering

Access Controls

We implement strict access controls to ensure only authorized personnel can access your data:

  • Multi-factor authentication (MFA) for all user accounts
  • Role-based access control (RBAC) with principle of least privilege
  • Regular access reviews and deprovisioning procedures
  • Employee background checks and security training

Compliance Standards

UpVerify maintains compliance with industry-leading security and privacy standards:

SOC 2 Type II

Audited controls for security, availability, and confidentiality

GDPR Compliant

European data protection regulation compliance

CCPA Compliant

California Consumer Privacy Act compliance

ESIGN Act

Electronic signature legal compliance

Incident Response

We maintain a comprehensive incident response plan to quickly address any security concerns:

  • 24/7 security monitoring and alerting
  • Dedicated incident response team
  • Automated threat detection and response
  • Regular incident response drills and testing
  • Transparent communication during incidents

Data Retention and Deletion

We maintain clear policies for data retention and secure deletion:

  • Documents are retained according to your account settings
  • Secure deletion procedures for expired data
  • Backup retention policies with automatic expiration
  • User-controlled data export and deletion options

Security Contact

If you have security concerns or wish to report a vulnerability, please contact our security team:

Security Email: security@upverify.net
General Contact: contact@upverify.net
Address: 101 E Washington St, Suite 500, Phoenix, AZ 85004
Phone: (602) 257-8144