The platform operates entirely in the cloud over Amazon Web Services (AWS), one of the most widely used and reliable infrastructure providers worldwide.

No. The platform has replicated infrastructure, meaning it doesn't depend on a single server. This helps maintain service availability even in the event of a technical failure.

The data is stored in data centers located in the United States, within the AWS infrastructure.

We hold an Service Level Agreement (SLA) where commitments are made regarding availability, support and incident response times.

Yes. All communication with the platform is done through secure connections (HTTPS), which protects the information during transmission.

Yes. The stored information is located encrypted within the AWS infrastructure.

Access is managed through specialized authentication systemsFor administrative access, the following is used: double verification (MFA) and each user can only access the functions that correspond to their role.

Yes. The system maintains basic logs of access and relevant actionswhich can be reviewed in case of incidents or support needs.

Yes. The infrastructure includes firewalls and protection mechanisms against common attacks and service overload.

Yes. They are done. automatic backups every day.

In case of a technical failure or error, backups allow restablish the information and continue with the operation.

Backups are stored securely within the AWS infrastructure, separate from the main environment.

Yes. The platform can be integrated with systems such as ERP, CRM, or other applicationsthrough secure connection mechanisms.

No. The platform operates completely in the cloud and it is accessed via the internet.

When a relevant failure or incidentCustomers are notified via email.

Currently, there is no dashboards or monitoring panels visible to the customer.

All information uploaded and managed within the platform is customer property.

We apply measures aligned with the Federal Law on the Protection of Personal Data Held by Private Parties (LFPDPPP), when applicable.

We currently do not have formal certifications such as ISO or SOCHowever, we carried out security testing (PENTEST) and we apply industry best practices.

Support is provided in accordance with what is established in the contract and the SLAincluding contact channels and response times.

The platform operates under a shared responsibility model:

• We protect the infrastructure and the platform.
• The client is responsible for the proper use of access and users.