CyberShield Pro / Trust Center
Last updated: 2025-09-02

Trust Center

Last updated: 2025-09-02

Our Scope (What We Do / Don’t)

  • We provide monitoring & hygiene for public-facing websites: defacement detection, safe hygiene checks, uptime guard, and outside-in Port/CVE insight.
  • We are not a WAF or DDoS scrubber and we do not block or filter traffic.
  • CVE mapping is shown only when service versions are detectable during scans.

Data Handling & Retention

  • We store baselines (hashes/snapshots of your approved URLs), alert metadata, scan results, and generated reports.
  • Default retention: 90 days for logs/alerts, 12 months for reports (configurable by tenant).
  • On-prem customers: all data stays on your infrastructure; no egress by default.

Security

  • Services run as non-root containers with least privilege; images are scanned and SBOMs retained.
  • Secrets are managed via a secret store (SaaS) or .env + OS vault (on-prem). Rotation policy: quarterly or on incident.
  • All endpoints enforce TLS; HSTS and CAA are enabled on SaaS.

Tenant Isolation (SaaS)

  • Multi-tenancy enforced at service layer and DB layer (e.g., Postgres RLS). Per-tenant object storage prefixes.

Vulnerability & Patch Management

  • Dependencies are tracked with SBOMs; critical patches prioritized. Security advisories are posted on the Status page.

Incident Response

  • 24×7 monitoring of platform health. Security incidents trigger immediate triage and customer notification with relevant indicators of compromise and mitigation guidance.

Sub-processors

  • SaaS email/SMS providers (for alerts) and cloud infrastructure in India region. Full list appears on the Status page.

Availability & SLOs (SaaS)

  • Target: detection→alert P50 < 5 min, P95 < 15 min for monitored pages.
  • Monthly uptime objective for the SaaS control plane is published on the Status page.

Contact

  • security@cyber-shieldpro.com for security issues.
  • For urgent concerns, use your support channel with P1 severity.
© 2025 Aaizel International Technologies — Monitoring & hygiene; not a WAF/DDoS. CVEs only when versions are detectable.