← Back to home

Legal

Security Policy

Roviean Technologies · Effective 5 June 2026 · Last updated 5 June 2026

Security practices, responsibilities, and limitations for Roviean services.

Roviean takes reasonable measures to protect systems and client data. This Security Policy describes our approach and important limitations.

1. Security Measures

We implement measures appropriate to our services, which may include:

  • Access controls and least-privilege administration;
  • Encryption in transit for modern deployments;
  • Secure development practices and dependency management;
  • Monitoring, logging, and incident response procedures;
  • Vendor review for critical third-party infrastructure.

2. Cybersecurity Disclaimer

Roviean does not warrant that services will be uninterrupted, error-free, or immune from cyber threats, unauthorized access, malware, ransomware, denial-of-service attacks, supply-chain compromises, or third-party platform incidents.

Client remains responsible for endpoint security, credential hygiene, access management, backups, and secure configuration of Deliverables in production.

3. Incident Notification

If we become aware of a confirmed security incident materially affecting Client data under our control, we will notify Client without undue delay in accordance with contractual obligations and applicable law.

4. Vulnerability Reports

Responsible disclosure reports may be sent to hello@roviean.com with subject line "Security Report". Do not test systems without written authorization.