Your privacy and data protection are our priority

Your business and your trust are at the center of what we do. We’ve developed a product that provides a comprehensive infrastructure to keep all data secure: both your own and your clients’.

vcita is trusted by more than 1.4 million
business owners worldwide

Penetration testing
Encryption
DDoS protections
GDPR
HIPAA
CCPA

We protect your data

To build a business you’re proud of, you need a solid foundation. And after over 10 years in the digital industry, vcita truly understands and ensures all its users are properly protected on all accounts.

In-transit encryption

We ensure the safety of your communication and interaction with your clients.

Sessions between you and your portal are protected with in-transit encryption using 2,048-bit or better keysf, and TLS 1.0 or above. Users with modern browsers will use TLS 1.2 or 1.3.

Web Application and network firewalls

We monitor and prevent potential cyber-attacks with several tools, including network-level firewalling. In addition, the vcita platform contains Distributed Denial of Service (DDoS) prevention defenses, as well as spam detection mechanisms, and Web Application Firewall (WAF).

Software development lifecycle (SDLC) security

We implement static code analysis technology and human review processes to ensure consistent quality in our software development practices, and prevent any security loopholes as we continuously improve and introduce new features.

Physical security

Our software operates with certified protection mechanisms and is hosted with cloud infrastructure providers such as Amazon Web Service (AWS) and Google Cloud Platform (GCP) with SOC 2 Type II and ISO 27001 certifications, among others. The certified protections include dedicated security staff, strictly managed physical access control, and video surveillance.

Audits and Penetration Testing

We routinely test vcita products and infrastructure by running year-round penetration testing. These tests are conducted by industry experts, to ensure the physical and digital security of our solution and yours.

Data security and privacy

When it comes to the privacy of your most sensitive information, we follow all the
compliance and have all possible regulations in place to safeguard them.

GDPR

Data processed with vcita is processed in compliance with the General Data Protection Regulation (GDPR).

HIPAA

vcita helps healthcare providers protect sensitive records and their patients’ confidential health information by processing data in compliance with HIPAA.

CCPA

vcita offers full transparency into privacy rights to consumers residing in the State of California in relation to their personal information. We align our practices with the California Consumer Privacy Act of 2018 (CCPA).

Data storage outside of the EU

vcita stores data with Amazon Web Service (AWS) which is GDPR ready and follows the new SCCs as further provided in our DPA.

UK Data protection

Data processed with vcita is processed in compliance with GDPR. These requirements also apply to anyone processing data of individuals in the UK.

Our data protection team

vcita’s team is responsible for monitoring and advising our ongoing privacy compliance. They serve as a point of contact on privacy matters for data issues and supervisory authorities. Our Data Protection Team may be reached at: [email protected]. Our EU-GDPR representative may be reached at [email protected].

Let’s talk legal!

Thorough and detail-oriented? So are we.
If you’re looking for the fine print, or need a signed copy, check out the links below.

Our Privacy Policy

We use personal data and non personal data in accordance with our privacy policy which you may find here.

Our Data Processing Agreement (DPA)

vcita provides a Data Processing Agreement/addendum (DPA) which you may find here. If you require a signed copy of the DPA, please download, sign, and send us the signed copy to [email protected], and we’ll provide you with a countersigned copy.

Our Business Associate Agreement

vcita’s HIPAA-compliant services are available only in connection with a Business or Platinum account. If you have purchased a Business or Platinum subscription, and are a HIPAA-covered entity or business associate, you may access and download the vcita Business Associate Agreement which may be found on your “My Account” page. To reach this page, please log into your vcita account and go to “Settings” from the main menu. Please download, sign, and send us the signed copy to [email protected] and we’ll provide you with a countersigned copy.

Give your small business that big business vibe.

Curious what vcita can do for your business?