Maltix QR Site data security

Security Protocols for Maltix Advocate, Go, and Tribe Maltix provides robust security measures to protect the data sources within your Progressive Web Apps (PWAs). By implementing high-level encryption, authentication, and access controls, we ensure your data remains secure and private.
1. Data Protection and Encryption

• Encryption in Transit: All Maltix Advocate, Go, and Tribe PWAs support HTTPS (SSL/TLS), ensuring data transmitted between the app and server is encrypted and protected from interception.
• Encryption at Rest: Data stored within our data sources is encrypted, providing a critical layer of protection even when the information is not actively being transmitted.
• Data Backup and Recovery: We employ regular backup mechanisms to prevent data loss and ensure rapid recovery and integrity in the event of an unforeseen incident.

2. Maltix Smart Form Pages Security Maltix Smart Form Pages are designed with a "security-first" architecture:

• Secure Data Centres: Data is stored in facilities protected by physical access controls, surveillance, and fire suppression, featuring redundant power and network connections.
• Vulnerability Management: We conduct regular security audits, penetration testing, and prompt patching to address potential threats.
• Account Protection: Users can implement strong passwords and two-factor authentication (2FA) to enhance account security.
• Compliance & Personnel: All Maltix Smart Form Page Virtual Assistants (VAs) have signed a Non-Disclosure Agreement (NDA) and are registered under Data Officer Compliance.
• Data Ownership: Users retain 100% ownership of their data. We do not sell or share information with third parties for marketing purposes.

3. Capsule CRM Security Integration As a core component of the Maltix ecosystem, Capsule CRM implements rigorous security standards:

• Advanced Authentication: Supports Two-Factor Authentication (2FA) and defines strict role-based access for team members.
• System Integrity: Undergoes regular third-party audits and continuous monitoring for suspicious activity or unauthorised access attempts.
• Incident Response: Maintains a comprehensive plan to address security incidents promptly, including timely user notifications and mitigation actions.
• Secure Integrations: All plugins and third-party integrations undergo rigorous security assessments to minimise breach risks.

4. Professional Email Security: Titan Maltix recommends Titan for a professional and secure email presence. We suggest a 9-step security framework:

1. Strong Password Policy: Enforce complex requirements and regular changes.
2. Multi-Factor Authentication: Require additional verification for all accounts.
3. Encryption: Use end-to-end encryption to prevent eavesdropping.
4. Employee Training: Regular sessions on phishing and social engineering.
5. Regular Updates: Ensure email servers and software are patched promptly.
6. Advanced Filtering: Use anti-malware software to block threats before the inbox.
7. Data Backup: Securely back up email data to off-site or cloud storage.
8. Monitoring: Track traffic and user behaviour for signs of unauthorised access.
9. Incident Procedures: Establish clear protocols for responding to breaches.

5. Legal and Ethical Responsibilities In the UK, app operators must handle data in a lawful, transparent manner according to the UK GDPR and DPA 2018.

• Consent and Transparency: Operators must obtain clear, informed consent and explain exactly how data is used. Only the minimum amount of data necessary should be collected.
• Security and Reporting: Appropriate technical measures must be implemented. Any data breach must be reported to the Information Commissioner's Office (ICO) and affected individuals immediately.
• Ethical Culture: Beyond legalities, we foster a culture of data responsibility through employee education and privacy-enhancing measures like anonymisation.
• ICO Registration: All relevant entities must register with the ICO in the UK.

6. Client Governance and Responsibility While Maltix provides the secure infrastructure, the responsibility for data governance is 100% governed by the client.

• Secure Automation: The client takes 100% responsibility for the upgrades required through Lares Virtual Assistants to securely automate and join up data between Maltix Connect, PWA, Smart Form Pages, Titan Email, Capsule CRM, and associated technologies.
• Implementation: Security and data management are subject to the client's specific investment with Lares to ensure seamless and protected integration across all platforms.

Maltix Guarantee
Through these combined measures, Maltix Advocate, Go, and Tribe ensure that data sources remain secure, governed by the specific security configurations and automation investments chosen by the user.

Register in the UK with the ICO