Security

Security Overview

At Gigz, we take the security of your personal information and data seriously. Our comprehensive security measures are designed to protect your information at every step, from data collection to storage and processing.

How We Protect Your Data

Secure Infrastructure

• Data Encryption: All sensitive data is encrypted both during transmission (using TLS/SSL) and at rest using industry-standard encryption algorithms.
• Secure Hosting: Our systems are hosted in SOC 2 compliant data centers with 24/7 physical security, redundant power systems, and environmental controls.
• Network Security: We employ multi-layered firewall protection, intrusion detection systems, and regular network security scans to identify and address potential vulnerabilities.

Authentication & Access

• Strong Authentication: We implement multi-factor authentication for all administrative access to our systems.
• User Authentication: Your account is protected using passwordless One-Time Password (OTP) authentication only. This eliminates password-related vulnerabilities while providing strong security through unique time-limited codes sent to your verified device.
• Access Controls: We follow the principle of least privilege, ensuring employees only have access to the data necessary for their specific job functions.

Ongoing Security Practices

• Regular Security Testing: Our systems undergo penetration testing and vulnerability assessments conducted by both internal teams and external security experts.
• Security Updates: We maintain regular patch management processes to address security vulnerabilities promptly.
• Security Monitoring: Our security team continuously monitors our systems for suspicious activities and potential security incidents.

Data Privacy

We respect your privacy and are committed to protecting your personal information:

• We only collect information that's necessary to provide our services
• Your data is never sold to third parties
• We have clear data retention policies
• You maintain control of your data with options to access, correct, or delete your information

For comprehensive information about our data practices, please review our Privacy Policy.

Secure User Practices

Help us keep your account secure by following these best practices:

1. Keep your phone number up to date in your account settings
2. Never share OTP codes with anyone, including our support team
3. Verify OTP requests are tied to actions you initiated
4. Be alert to phishing attempts claiming to be from our company
5. Log out from your account when using shared devices
6. Keep your devices and browsers updated
7. Secure your email account as it may be used for account recovery

Security Reporting

If you discover a potential security vulnerability, please report it to us immediately at support@gigz.app. We investigate all legitimate reports and do our best to quickly fix valid security issues.

Contact Us

If you have any questions about our security practices, please contact our security team at support@gigz.app.