How we protect the information you entrust to us.
At Verimont, security is foundational to our service. We handle sensitive information with the highest standards of technical and organizational safeguards.
All data transmitted to and from our website is encrypted using TLS 1.2 or higher. Data at rest is encrypted using AES‑256.
Access to customer data is restricted to authorized personnel on a need‑to‑know basis. We enforce multi‑factor authentication and least‑privilege principles.
We regularly scan our infrastructure and applications for vulnerabilities, and we engage third‑party security firms to conduct independent penetration tests.
We maintain an incident‑response plan designed to contain, assess, and notify affected parties in the event of a security incident, in accordance with applicable law.
Our security practices are periodically reviewed by independent auditors. We are committed to compliance with relevant security frameworks.
You are responsible for maintaining the confidentiality of any credentials used to access our services and for ensuring that the information you submit is accurate and lawful.
If you believe you have identified a security vulnerability in our systems, please report it to security@verimont.ca. We will investigate and respond promptly.
We may update this security statement as our practices evolve. The latest version will always be posted here.