Security and Availability Policy

B2CPrint Ltd. (“B2CPrint”, “we”, “our”, or “us”) is committed to ensuring the security, availability, and integrity of our systems, data, and services. This Security & Availability Policy outlines the measures we take to safeguard customer information and ensure consistent service availability.

 

  1. Information Security

We implement a variety of technical, administrative, and physical controls designed to:

  • Protect against unauthorized access, alteration, disclosure, or destruction of personal data
  • Ensure data confidentiality, integrity, and availability
  • Detect and respond to vulnerabilities and incidents

1.1. Access Controls

  • Role-based access controls (RBAC) are enforced across all internal systems.
  • Administrative access is restricted to authorized personnel.
  • Passwords are encrypted using industry-standard hashing algorithms.

1.2. Data Encryption

  • All customer data is encrypted in transit using TLS 1.2+.

1.3. Network Security

  • Firewalls and intrusion detection/prevention systems (IDS/IPS) are in place.
  • DDoS mitigation solutions protect against denial-of-service attacks.
  • Regular vulnerability scans and penetration tests are performed.

1.4. Monitoring & Logging

  • Continuous system monitoring and logging of access and system events.
  • Security events are reviewed regularly by the operations and security teams.

 

  1. Physical Security
  • Our infrastructure is hosted in data centers with strict physical access controls, 24/7 surveillance, and compliance with ISO/IEC 27001 standards.
  • All hardware is managed and maintained by trusted infrastructure providers.

 

  1. Availability & Uptime

3.1. Service Uptime

  • B2CPrint aims for 99.9% uptime for all core services, excluding scheduled maintenance and force majeure events.
  • Service availability is monitored continuously, and redundancies are in place to ensure business continuity.

3.2. Disaster Recovery

  • We maintain regular backups and a documented Disaster Recovery Plan (DRP).
  • Backups are encrypted and stored in geographically diverse locations.
  • Recovery testing is conducted periodically to ensure data can be restored effectively.

 

  1. Incident Response
  • We maintain an internal Incident Response Plan (IRP).
  • All incidents are promptly assessed, contained, and remediated according to severity.
  • Affected customers will be notified without undue delay in the event of a data breach as required by law.

 

  1. Employee & Contractor Controls
  • All employees and contractors undergo background checks and security training.
  • Confidentiality agreements are in place.
  • Access is revoked immediately upon role change or termination.

 

  1. Customer Responsibilities
  • Customers are responsible for protecting their login credentials and ensuring secure access to the platform.
  • Customers must notify B2CPrint immediately of any suspected unauthorized use of their accounts.

 

  1. Policy Review & Updates

This policy is reviewed and updated annually or as needed in response to regulatory or operational changes.

 

  1. Contact

For questions related to this Security & Availability Policy, please contact us at:

B2CPrint Ltd
2 Kaufman Street
Tel Aviv, Israel
Email: [email protected]