Find all information pertaining to our Data Security Policy
1.1 The following describes Relevance AI’s Data Security Policy. This policy may be updated from time to time, however, terms effective at the time of signing a Proposal will apply throughout the duration of the applicable Term.
1.2 Defined terms provided under clause 1 of the Relevance AI SaaS Terms and Conditions shall apply to this policy.
2.1 Relevance AI employees are required to comply with the company’s policies and procedures. These policies include:
2.2 Relevance AI employees do not have direct access to Subscriber Data, except where necessary on a need-to-know basis to undertake:
2.3 Criminal background checks are performed for employees with access to Subscriber Data as part of the hiring process.
2.4 Relevance AI trains its employees on the importance of information security and the Company’s approach to maintenance of information security. This training is conducted at the commencement of the employment and at regular intervals after commencement.
3.1 Relevance AI engages a cloud infrastructure provider (IaaS Provider) to host data in data centre facilities.
3.2 An IaaS Provider will:
3.3 All data centre facilities used by a IaaS Provider:
4.1 The Platform will include reasonably up-to-date versions of system security agent software which will include reasonably current and tested malware protection, patches and anti-virus protection.
4.2 Relevance AI will create a disaster recovery plan designed to provide appropriate technical and operational controls to deliver the recovery time objective (RTO) and recovery point objective (RPO), as outlined in its Service Level Policy.
4.3 Unless otherwise agreed by Relevance AI in writing, Subscriber are prohibited from performing their own penetration testing on any system of Relevance AI.
4.4 Relevance AI ensures that database infrastructure is segregated from the application servers and the internet via firewalls.
4.5 All communications are encrypted between the data exporter and the data centres using high-grade encryption (AES-256).
4.6 Access to Relevance AI’s on-demand applications and services is only available:
4.7 Passwords for Relevance AI’s on-demand applications and services are never transmitted or stored in their original form.
4.8 Relevance AI’s application infrastructure is protected against intrusion by industry standard firewalls at the network, host, and application levels.
4.9 Several IaaS Provider instances are hosted on the same physical machine and are isolated from each other through a hypervisor layer.
4.10 IaaS Provider infrastructure has no access to raw disk devices, but instead are presented with virtualised disks.
5.1 The Platform may allow third party services interoperating with it to access, use, or otherwise process and transmit Subscriber Data.
5.2 This Data Security Policy does not apply to any processing, storage, or transmission of data outside the Platform.
5.3 Relevance AI is not responsible for the security practices (or any acts or omissions) of any third party service providers engaged by or on behalf of Subscriber.
5.4 The Data Security Policy excludes:
5.5 Relevance AI excludes liability for any data used, processed, stored or transmitted by a Subscriber or other third parties in violation of these terms and conditions.