> For the complete documentation index, see [llms.txt](https://hub.equipme.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://hub.equipme.io/documentation/security-and-privacy/faqs.md).

# FAQs

#### **1. Application Security** <a href="#ispasted" id="ispasted"></a>

**Does the application encrypt sensitive data?**

Yes, sensitive data is encrypted both at rest using AES-256 encryption and in transit using TLS protocols.

**Do you segregate production and development environments?**

Yes, production and development environments are fully segregated to avoid accidental changes or interference.

**Do you validate that new releases are free from risks?**

Yes, equipme performs automated testing for each release to detect vulnerabilities and ensure security.

**Is there a mechanism to detect malicious files during uploads?**

Yes, file uploads are scanned for malicious content before processing, ensuring system integrity.

**Is multi-tenancy implemented securely?**

Yes, multi-tenant applications are adequately isolated, ensuring data protection across different users.

#### **2. Data Privacy**

**How does equipme comply with GDPR?**

equipme processes data in compliance with GDPR regulations. Data is stored in EU data centers, and only approved subprocessors are used. Customer data is handled securely and lawfully.

**What is equipme’s data retention policy?**

Data is retained for four weeks after service termination. Afterward, data is securely deleted unless legal requirements dictate otherwise.

**Does equipme support Data Loss Prevention (DLP)?**

Yes, equipme implements DLP using AWS Macie to identify, classify, and protect sensitive information.

**Can customers request data deletion?**

Yes, customers can submit data deletion requests through equipme. Data will be securely removed in accordance with GDPR requirements.

#### **3. Compliance and Certifications**

**What certifications validate equipme’s security?**

equipme operates on AWS, which is ISO 27001 certified. This certification ensures compliance with global information security standards.

**Where can I find equipme’s certification documents?**

Certification details, including the ISO 27001 certificate, are available in the [Resources](https://hub.equipme.io/spaces/17402794/page) section.

**How does equipme ensure compliance with privacy laws?**

equipme follows strict policies and procedures, including GDPR compliance and regular security audits.

#### **4. Technical and Organizational Measures (TOMs)**

**What backup and recovery measures are in place?**

equipme performs regular backups and tests recovery procedures to ensure data integrity and availability.

**How does equipme handle security incidents?**

equipme has a defined incident management process to detect, respond to, and resolve security incidents promptly.

**Are employees trained on security protocols?**

Yes, employees undergo regular training on data security, privacy, and compliance.

**Is there an encryption policy for stored data?**

Yes, all stored data is encrypted using AES-256 to ensure confidentiality and security.

#### **5. Customer Responsibilities**

**Who is responsible for ensuring data accuracy?**

Customers are responsible for providing accurate and lawful data. equipme ensures this data is handled securely once received.

**What if a customer needs to modify their data?**

Customers can request data changes through equipme's support team. Changes will be processed in compliance with applicable privacy laws.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://hub.equipme.io/documentation/security-and-privacy/faqs.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.