We guarantee the highest standards of data privacy.
As part of our commitment to ensure the secure handling of sensitive data in accordance with the highest industry standards, all personal information is protected and managed securely in full compliance with the GDPR, Austrian Data Protection Act, and Austrian Telecommunications Act.
Our commitment to data security & privacy.
We use state-of-the-art encryption when transferring or storing any health information. We guarantee the security and privacy of sensitive user data by implementing strict company-wide guidelines and best practices.
European data centers
XUND hosts its services at a European cloud provider with data kept in Austrian data centers. Physical security includes redundant electricity, fire protection, and 24*7 onsite security officers.
Business continuity
XUND upholds a comprehensive strategy for ensuring business continuity. Data is securely backed up in remote geographical locations, with regular testing of restoration procedures.
Patching
There are various vulnerability scans incorporated into the development pipelines and product environments. Found vulnerabilities are reported to monitoring systems, and appropriate remediation actions are taken.
Personnel security
All staff is trained at onboarding and regularly thereafter on relevant security threats. Employee devices are centrally managed and have the latest security software running on them.
Our suppliers
All sub-processors need to go through a defined vendor evaluation process. All sub-processors have a signed statement of work, confidentiality agreement, and data processing agreement.
We are certified
XUND’s ISO27001-certified security systems undergo continuous improvement. The ISMS contains policies for incident management, application security, cryptography, segregation of networks, and many more.