Trust Center

Comprehensive information about Arx security, compliance, privacy, and infrastructure.

Security & infrastructure

TLS 1.3 — All data in transit encrypted with TLS 1.3
AES-256 — Sensitive data encrypted at rest
Multi-region — Active-active deployment across US regions
Automated backups — Hourly backups with 30-day retention
Intrusion detection — Real-time monitoring and alerting
Penetration testing — Regular security assessments by third parties

Compliance

SOC 2 Type II

Audited and certified. Security, availability, and integrity controls verified by external auditors.

GDPR

Compliant with General Data Protection Regulation. Data Processing Agreement available.

CCPA

Compliant with California Consumer Privacy Act. Privacy policy and opt-out mechanisms in place.

HIPAA

Business Associate Agreement available for healthcare organizations.

ISO 27001

Information security management system certified.

SOC 3

Trust report available for customer transparency.

Availability & SLA

Arx maintains a 99.99% uptime SLA for all production services.

Real-time status page: status.arxsec.io
Redundancy across multiple availability zones
Automatic failover for infrastructure failures
Incident response team available 24/7

Data privacy

Arx is committed to protecting your privacy and your customers' data.

Privacy Policy — Read our privacy policy
Data Processing Agreement — View our DPA
Subprocessors — See our subprocessor list
Data deletion — Available on request with 30-day notice

Responsible disclosure

Found a security vulnerability? We appreciate your help in keeping Arx secure. Please email security@arxsec.io with details.

We commit to:

Acknowledging receipt within 24 hours
Providing regular updates on progress
Crediting you publicly (if desired)
Not taking legal action for good-faith disclosure

Security documentation

The following documents are available to customers and authorized auditors:

SOC 2 Type II audit report
ISO 27001 certification
Risk assessment and mitigation plan
Business continuity and disaster recovery plan
Incident response procedures

Request these documents by contacting security@arxsec.io.

Questions?

For security, compliance, or trust-related questions, contact our security team at security@arxsec.io.