Castellum.AI implements safeguards to prevent unauthorized access to, use of, or disclosure of user information. This includes:
- Data minimization: Castellum.AI works to ensure that personal data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
- Security: Castellum.AI works to ensure that personal data is stored securely using systems that are kept-up-to-date. Access to personal data is limited to personnel who need access and security is in place to avoid unauthorized sharing of information.
- Encryption: Castellum.AI implements technical and organizational measures such as the pseudonymization and encryption of personal data; the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services; the ability to
restore the availability and access to personal data in a timely manner in the event of a physical or technical incident; and, a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing.