Nevioz logoNevioz Back to Home

    Security

    Last updated:

    An overview of how we approach security for our website and products, and how you can help keep your account safe.

    1. Our commitment

    Nevioz takes the security of our Services and your data seriously. We implement reasonable technical and organisational measures designed to protect information against unauthorised access, alteration, disclosure, or destruction, consistent with the Information Technology Act, 2000, applicable rules including the SPDI Rules, 2011, and industry practice in India.

    This page describes our security approach at a high level. It is not an exhaustive list of controls and does not create contractual obligations beyond those in your agreement with us or in our Privacy Policy and Terms of Service.

    2. Organisational measures

    • Access to production systems and data is limited to authorised personnel on a need-to-know basis.
    • We use confidentiality commitments with employees and contractors where appropriate.
    • We assess subprocessors (such as hosting and email providers) for alignment with our security expectations.

    3. Technical measures

    • Transport security: We use HTTPS/TLS for data in transit between your browser and our services where supported.
    • Authentication: We support strong authentication patterns for products that offer accounts (such as secure passwords and, where available, additional factors).
    • Segmentation and monitoring: We apply access controls, logging, and monitoring to help detect and respond to anomalies.
    • Patching and updates: We maintain dependencies and infrastructure with regular updates as practicable.

    4. Data location and subprocessors

    Customer data may be processed on infrastructure located in India and/or other regions, depending on the product configuration and subprocessors in use. Our Privacy Policy describes how we handle personal data, including cross-border transfers where applicable.

    5. Your responsibilities

    Security is shared. You should:

    • Use unique, strong passwords and protect credentials;
    • Keep software and devices updated;
    • Report suspected unauthorised access to us promptly;
    • Beware of phishing — we will not ask for your password by email.

    6. Reporting security vulnerabilities

    If you believe you have found a security vulnerability in our Services, please email hello@nevioz.com with the subject line "Security disclosure". Include enough detail for us to reproduce the issue. Please do not perform testing that could harm users, degrade production systems, or violate law.

    We appreciate responsible disclosure and will work with you in good faith to investigate and remediate valid issues, subject to legal and operational constraints. We do not operate a public bug-bounty programme unless separately published.

    7. Incident response

    If we become aware of an incident that materially affects the confidentiality or integrity of personal data we process as a service provider or data fiduciary, we will handle notifications in line with applicable Indian law and contractual commitments, including informing affected customers or users where required.

    8. Limitation

    No security practice guarantees absolute security. To the extent permitted by law, we are not liable for incidents arising from factors outside our reasonable control (including your devices, networks, or third-party compromises), except as stated in our Terms or where liability cannot be excluded under Indian law.

    9. Contact

    Nevioz
    Surat, Gujarat, India
    Email: hello@nevioz.com