Privacy Policy

At Pomafort, information security is a top priority. This policy establishes guidelines and procedures to ensure the protection of our users' information and privacy on our website. All employees, partners and users interacting with our website must comply with these policies.

Secure Access

Strong authentication measures will be implemented to ensure secure access to the website. Passwords must meet complexity standards and the use of two-factor authentication will be promoted whenever possible.

Secure Data Transmission

HTTPS protocol will be used to ensure secure data transmission between the user and the server. Sensitive information, such as customer data, will be encrypted during transmission.

3. Updates and Patches

All systems and software used on the website will be kept up to date with the latest versions and security patches. A regular review schedule will be established to ensure the applicability of updates.

4. Continuous Monitoring

Continuous monitoring tools will be implemented to detect and respond to potential security threats. Any suspicious activity will be investigated immediately and corrective action will be taken.

5. Password Policy

Clear policies shall be established for the creation and management of secure passwords. Passwords shall be stored in a secure and encrypted manner and shall be encouraged to be changed on a regular basis.

6. Privacy Policy

The website's privacy policy will be clear and transparent, specifying how user data is collected, used and protected. Users will have the option to review and update their privacy preferences.

7. Protection against attacks

Security measures will be implemented against common threats, such as denial of service (DDoS) attacks and SQL injection attacks. Regular security tests will be conducted to identify and correct potential vulnerabilities.

8. Data Backup

Regular backups of critical website data will be performed. A disaster recovery plan will be established to ensure business continuity in the event of data loss.

9. Education and Awareness

Regular training will be provided to employees and users on safe online practices and the importance of information security. A culture of security will be fostered in which all users are aware of threats and know how to mitigate them.

10. Legal Compliance

We are committed to complying with all applicable privacy and data security laws and regulations. We will maintain active collaboration with relevant authorities to ensure ongoing compliance.