Security Disclosure

At 2R-AT, security is our core business and our utmost priority. We are committed to transparency and maintaining the highest standards of security for our systems, services, and client data.

1. Responsible Disclosure Policy

2R-AT encourages security researchers and the community to responsibly disclose any potential vulnerabilities found in our systems or services. If you believe you have discovered a vulnerability, please contact us immediately at [security@2r-at.com].

• Provide detailed information about the vulnerability, including steps to reproduce it.
• Do not publicly disclose the vulnerability until we have had reasonable time to address it.
• Do not access, modify, or destroy any data without explicit authorization.
• Do not engage in any activity that could disrupt or degrade our services.

We commit to acknowledging your report promptly, investigating thoroughly, and providing updates on our remediation efforts. We greatly appreciate your contributions to enhancing our security posture.

2. Data Handling and Protection

• Encryption: All sensitive data, both in transit and at rest, is protected using industry-standard encryption protocols (e.g., TLS 1.2+, AES-256).
• Access Control: Access to sensitive data and systems is strictly controlled on a need-to-know basis, utilizing multi-factor authentication (MFA) and least privilege principles.
• Regular Audits: We conduct regular internal and external security audits, penetration tests, and vulnerability assessments to identify and mitigate risks.
• Incident Response: We have a comprehensive incident response plan in place, which includes detection, containment, eradication, recovery, and post-incident analysis. Our Security Operations team monitors our systems 24/7.
• Employee Training: All 2R-AT employees receive regular security awareness and data privacy training.

3. Client Data Security

For clients engaging our cybersecurity services, specific data security provisions and non-disclosure agreements are stipulated in our service contracts. We operate under strict confidentiality principles, ensuring that client data is protected according to agreed-upon terms and relevant legal frameworks.

4. Contact for Security Concerns

For any security-related inquiries or to report a vulnerability, please contact our dedicated security team:

Email: [security@2r-at.com]