Security

We apply technical and organizational safeguards to protect customer data against unauthorized access, loss, misuse, or disclosure. Access to production systems is limited to authorized team members who need it to operate, support, or improve the service.

Onvocado uses encrypted connections for data transmitted between browsers, our website, and our services. We rely on HTTPS/TLS for secure communication and use trusted infrastructure providers for hosting and delivery.

Our platform is hosted on managed cloud infrastructure and is designed with availability, monitoring, and operational maintenance in mind. We review service performance and take action when reliability issues are detected.

Internal access is granted based on role and business need. Where possible, we use account-level controls, auditability, and secure authentication practices to reduce the risk of unauthorized access.

Customers are responsible for keeping their account credentials secure, managing access for their teams, and making sure the content and data they collect through widgets comply with applicable laws and consent requirements.

If you believe you have found a security vulnerability or have a security-related question, contact us at support@onvocado.com. Please include enough detail for us to understand and reproduce the issue.