Privacy Policy

Thank you for using RecXpert, a product provided by Kredo. At Kredo, we take your privacy and the security of your data very seriously. Our team is dedicated to maintaining security standards to keep your information safe. This Privacy Policy outlines our commitment to protecting your data and explains how we collect, use, and safeguard your information. By using RecXpert, you consent to the practices described in this Privacy Policy.

1. Data Security

1.1 AWS VPC Servers: RecXpert utilizes AWS cloud infrastructure including VPC servers to provide standard global security for your data.

1.2 RecXpert Security:

We employ the following security measures to protect your data :

1.2.1 Password Encryption: All passwords within RecXpert are encrypted to prevent unauthorized access.

1.2.2 Data in transit: Data communication within RecXpert uses secure REST API to ensure that data transmission is encrypted and secure.

1.2.3 Data at rest: Data is stored securely on AWS VPC servers.

1.2.4 Transactional Data: No transactional data is stored in the RecXpert database.

1.2.5 AWS S3 Storage: Transaction details are stored in Excel output files on AWS S3 as a reference repository. This data can be aligned to the client's data retention policy for archival.

1.3. Taking care of your Password (Password security): Kredo firmly believes in protecting the information of the customer. Kredo or any of its staff or officials will never ask for any password or related information from its customers and the customers are also advised, in order to protect access to their accounts and to other channels, do not disclose the passwords to anyone. We will bear no responsibility for loss caused to you in relation to password theft or unauthorized access due to weak passwords etc.

2. Access to Data

2.1 Access Control: Only users created by the client’s administrator can access data through the RecXpert application. This ensures that only authorized personnel can view and edit data within the application.

2.2 Kredo Access: Kredo may access your data on AWS for technical purposes, which includes support and updates. This access is carefully controlled and monitored under NDAs. Please note that our engineers do not have access to your passwords, as they are securely encrypted.

2.3 Non-Disclosure Agreement: Kredo maintains a Non-Disclosure of Data agreement with employees to protect your data. Our engineers are well-informed about the consequences and risks associated with accessing customer data. Similar Non-Disclosure agreements are signed with the clients and we are aware of our responsibilities in managing customer data and access.

2.4 Changes to data: All data changes through the application are logged, containing both user and time-stamp information.

3. User Control

3.1 Data Management: Users can be created only by the administrator and further roles and permissions can be assigned accordingly for data security purposes.

4. Changes to this Privacy Policy

4.1 Updates: This Privacy Policy may be updated periodically to reflect changes in our data practices or legal requirements. Please check this policy regularly for updates.

Your trust is important to us, and we are committed to safeguarding your data. We encourage you to review this Privacy Policy carefully and contact us if you have any questions or concerns. By using RecXpert, you agree to the terms outlined in this Privacy Policy.