1. What measures does Ordr implement to ensure data security and privacy?
Ordr is committed to safeguarding customer data through a comprehensive data security program that aligns with industry best practices and standards. Our approach includes:
- Organizational Security: Assigning responsibility for information security management to skilled and senior personnel.
- Physical Security: Ensuring that all systems hosting customer data are maintained in physically secure environments with access restrictions.
- Access Controls: Implementing measures to ensure that access to systems hosting customer data is protected through unique identifiers, granting access only to authorized individuals based on the principle of least privilege.
- Incident Response: Maintaining procedures to detect, report, log, and resolve operational problems and security incidents in a timely manner.
- Data Management Controls: Ensuring that customer data is used only for specified purposes, implementing data integrity controls, and establishing procedures for data destruction when appropriate.
2. How does Ordr handle data collected from its services?
Ordr collects information to provide and improve our services, including:
- Personal Information: Such as your name, company name, address, phone number, and email address, which you provide when registering for an account or contacting us.
- Technical Information: Including details about your device(s), browser type and version, geo-location information, IP address, and standard web log information.
We use this information to:
- Provide access to our services and communicate with you.
- Prevent, detect, and investigate potentially prohibited or illegal activities.
- Analyze the accuracy, effectiveness, and usability of our services.
Ordr does not sell personal data.
3. Does Ordr comply with industry standards and regulations?
Yes, Ordr complies with all federal, state, and local laws, rules, regulations, directives, and decisions relevant to the handling, processing, storing, or use of customer data. We have implemented data security measures consistent with industry best practices and standards to protect customer data.
4. How does Ordr respond to security incidents?
Ordr has established incident response measures and procedures to ensure that operational problems and security incidents are detected, reported, logged, and resolved in a timely manner. This includes monitoring system availability, performance, and capacity to detect potential issues and routinely monitoring networks for availability and response times.
5. What is Ordr’s approach to data encryption?
Ordr employs robust encryption protocols to protect data both at rest and in transit. We utilize industry-standard encryption algorithms to ensure that sensitive information is securely stored and transmitted. Access to encrypted data is strictly controlled and monitored to prevent unauthorized access.
6. Does Ordr conduct regular security assessments?
Yes, Ordr conducts regular security assessments, including vulnerability scans, penetration testing, and security audits, to identify and address potential risks. We also engage third-party security experts to perform independent assessments of our systems and processes, ensuring that we maintain the highest security standards.
7. How does Ordr manage third-party vendor security?
Ordr maintains a Vendor Security Risk Management program to assess and monitor the security practices of our third-party vendors. We require vendors to adhere to our security and privacy standards, including compliance with relevant regulations and implementation of appropriate security controls. Regular assessments and audits are conducted to ensure ongoing compliance and to mitigate any potential risks associated with third-party relationships.
8. How can I contact Ordr for more information about data security and privacy?
If you have questions or complaints regarding Ordr’s privacy policy or practices, please contact us at helpdesk@ordr.net or via postal mail at:
Ordr, Inc.
2445 Augustine Dr.
#601
Santa Clara, CA 95054
Attention: Privacy Officer
We are committed to addressing your concerns and providing you with the information you need.