Data security
Date of last revision: 28 March 2025
This platform uses the services provided by Awero, VšĮ, code 302534319, address Šeimyniškių g. 22C-1, LT-09312 Vilnius, Lithuania, (further – ‘Awero’). Awero is aware of the importance of your privacy and data protection and treats the protection of your personal data seriously. Below we address the foundations for how Awero processes your personal data in the course of providing its services. For more detailed information please refer to the Privacy policy.
Awero user’s privacy policy is following the law of the Republic of Lithuania on Legal Protection of Personal Data and the European Union’s regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
1. Data controllers’ information:
Awero, VšĮ,
Šeimyniškių g. 22C-1, LT-09312 Vilnius
08218 Vilnius
Lithuania
Registration no.: 302534319
3. Collection of personal data:
Required data: E-mail address
Voluntarily provided upon the user’s choice: Facebook login data or Google login data Optional and voluntarily submitted by the user: surname, name, date of birth*, language, country and time zone.
*Date of birth can be removed as an optional entry at the organization’s account level to comply with the Badge issuer’s policy of personal data protection.
4. Data storage and security:
Awero uses standard SSL encryption for communication between user and our service. Personal information is stored in the joint databases which are secured with firewalls and other appropriate technical measures.
For storing data, Awero uses the services of OVH.com and Hetzner.de. Physical servers are located in the data centers located in the territory of the European Union.
5. Data security strategies used by Awero.
A comprehensive data security strategy incorporates people, processes and technologies. Establishing appropriate controls and policies is as much a question of organizational culture as it is of deploying the right tool set. This means making information security a priority across all areas of the enterprise. Awero uses Physical security of servers and user devices, Access management and controls, Application security and patching, Backups, Employee education, Network and endpoint security monitoring and controls.
6. Access management and controls.
Awero follows the principle of “least-privilege access” throughout our entire IT environment. This means granting database, network and administrative account access to as few people as possible, and only to individuals who absolutely need it to get their jobs done.
7. Application security and patching.
Users have to update all software to the latest version as soon as possible after patches or the release of new versions.
**8. Backups.
Awero maintains usable, thoroughly tested backup copies of all critical data which is a core component of any robust data security strategy. In addition, all backups are subject to the same physical and logical security controls that govern access to the primary databases and core systems.
9. Employee education.
Awero teaches employees the importance of good security practices and password hygiene and trains them to recognize social engineering attacks.
10. Network and endpoint security monitoring and controls.
Awero has implemented a comprehensive suite of threat management, detection and response tools in both on-premises and cloud environments to lower risks and reduce the chance of a breach.