Security and Privacy Guidelines

Each party shall establish, maintain, and on a regular basis improve its safeguards and controls against the destruction, loss or alteration of Toremy LLC Property or Client Data. Below Toremy LLC’s security and privacy guidelines are described and you agree to follow similar guidelines in your systems.

Toremy LLC’s application prioritizes security and privacy by implementing a range of robust measures to protect user data and ensure compliance with industry standards.

Compliance and Certifications: Toremy LLC adheres to the highest standards of data security and privacy, complying with SOC 1, SOC 2, and SOC 3 as well as ISO 27001, ISO 27017, and ISO 27018 certifications. These standards guarantee that we follow best practices for managing user data securely and responsibly. 

Data Protection: Toremy LLC utilizes secure, access-controlled APIs that are key restricted and rate limited to mitigate the risk of denial-of-service (DoS) attacks. All interactions with our backend are conducted over HTTPS, ensuring encrypted communication and protecting data integrity during transmission.

Access Control: Access to Toremy LLC’s database is strictly controlled. Only authorized personnel can access sensitive information, and all access attempts are logged and monitored. Toremy LLC enforces access controls for every database interaction, ensuring that data is only accessible to users with the necessary permissions.

Encryption: Data is encrypted end-to-end, from the moment it is captured to when it is stored in Toremy LLC’s databases. This ensures that sensitive information remains protected throughout its lifecycle, preventing unauthorized access and data breaches.

API Security: Toremy LLC’s APIs are designed with security in mind. They are:

  • Access Controlled: Only authenticated and authorized requests can interact with our backend services.

  • API Key Restricted: Each API request requires a valid API key, which helps prevent unauthorized access.

  • Rate Limited: To protect against DoS attacks, we limit the number of API requests that can be made within a certain timeframe.

These measures collectively ensure that Toremy LLC’s application maintains a high standard of security and privacy, safeguarding user data against potential threats and ensuring compliance with recognized industry standards.