Security

We believe privacy is a right, not a privilege, and it is built into the foundations of our company. By using the Vourity developer platform and following our developer policy, you play a critical role in making sure the platform serves the users and customer on Vourity and safeguards our commitment to privacy.

We want to remind you of the importance of building securely in order to protect both your own and your customers data. It is your responsibility to protect against the threat of security breaches, and we have a shared responsibility to protect the people who use Vourity Cloud. This page describes expectations around building secure applications and keeping data and access as safe as possible.

Reporting security issues

Vourity Developer Platform users must notify Vourity no more than 24 hours after initial suspicion a security incident has occurred.

Monitor and get alerted

If you think there’s an issue with your solution, how do you find out for sure? Be sure to keep good logs, and that you are notified of critical exceptions and errors. You may want to put together a dashboard of critical statistics so that you can see at a glance if something is going wrong.

Input validation

Don’t assume that your users will provide you with valid, trustworthy data. Sanitize all data coming from your users that can end up in Vourity Cloud API requests. List the types of input that are acceptable to your application and discard everything that isn’t on the allowlist.