B2CPrint Ltd. (“B2CPrint”, “we”, “our”, or “us”) is committed to ensuring the security, availability, and integrity of our systems, data, and services. This Security & Availability Policy outlines the measures we take to safeguard customer information and ensure consistent service availability.
- Information Security
We implement a variety of technical, administrative, and physical controls designed to:
- Protect against unauthorized access, alteration, disclosure, or destruction of personal data
- Ensure data confidentiality, integrity, and availability
- Detect and respond to vulnerabilities and incidents
1.1. Access Controls
- Role-based access controls (RBAC) are enforced across all internal systems.
- Administrative access is restricted to authorized personnel.
- Passwords are encrypted using industry-standard hashing algorithms.
1.2. Data Encryption
- All customer data is encrypted in transit using TLS 1.2+.
1.3. Network Security
- Firewalls and intrusion detection/prevention systems (IDS/IPS) are in place.
- DDoS mitigation solutions protect against denial-of-service attacks.
- Regular vulnerability scans and penetration tests are performed.
1.4. Monitoring & Logging
- Continuous system monitoring and logging of access and system events.
- Security events are reviewed regularly by the operations and security teams.
- Physical Security
- Our infrastructure is hosted in data centers with strict physical access controls, 24/7 surveillance, and compliance with ISO/IEC 27001 standards.
- All hardware is managed and maintained by trusted infrastructure providers.
- Availability & Uptime
3.1. Service Uptime
- B2CPrint aims for 99.9% uptime for all core services, excluding scheduled maintenance and force majeure events.
- Service availability is monitored continuously, and redundancies are in place to ensure business continuity.
3.2. Disaster Recovery
- We maintain regular backups and a documented Disaster Recovery Plan (DRP).
- Backups are encrypted and stored in geographically diverse locations.
- Recovery testing is conducted periodically to ensure data can be restored effectively.
- Incident Response
- We maintain an internal Incident Response Plan (IRP).
- All incidents are promptly assessed, contained, and remediated according to severity.
- Affected customers will be notified without undue delay in the event of a data breach as required by law.
- Employee & Contractor Controls
- All employees and contractors undergo background checks and security training.
- Confidentiality agreements are in place.
- Access is revoked immediately upon role change or termination.
- Customer Responsibilities
- Customers are responsible for protecting their login credentials and ensuring secure access to the platform.
- Customers must notify B2CPrint immediately of any suspected unauthorized use of their accounts.
- Policy Review & Updates
This policy is reviewed and updated annually or as needed in response to regulatory or operational changes.
- Contact
For questions related to this Security & Availability Policy, please contact us at:
B2CPrint Ltd
2 Kaufman Street
Tel Aviv, Israel
Email: [email protected]