Security Policy

This Security Policy applies to:

• The SoftGen website & client communications
• Software development projects & source code repositories
• Internal development environments & cloud-based delivery services
• Employees, contractors, and authorized personnel working with SoftGen

SoftGen follows industry-recognized security principles to:

• Protect confidential client information
• Preserve the integrity of software and data
• Maintain service availability where reasonably possible
• Reduce security risks through continuous improvement

Access to internal systems and project resources is restricted to authorized personnel based on business need.

Security measures may include:

• Role-based access controls
• Strong password requirements
• Multi-factor authentication where supported
• Periodic review of user access
• Immediate revocation of unnecessary access

Security is considered throughout the software development lifecycle.

Where appropriate, we apply practices such as:

• Secure coding standards
• Dependency management
• Version control systems
• Code review processes
• Testing before deployment
• Timely application of patches

Client information is handled with appropriate care.

Reasonable safeguards may include:

• Encryption of data in transit using HTTPS/TLS
• Restricted access to confidential information
• Secure storage of project assets
• Regular backups where applicable
• Controlled sharing of project information

SoftGen utilizes reputable cloud infrastructure and hosting providers to support service delivery.

Security measures may include:

• Secure hosting environments
• Network monitoring by infrastructure providers
• Firewall protections where available
• Infrastructure updates and maintenance
• Redundancy and backup mechanisms where appropriate

If a security incident is identified, SoftGen will take reasonable steps to:

• Investigate the incident & contain potential risks
• Restore affected services where possible
• Notify affected clients when required by applicable law or contractual obligations
• Review the incident to improve future security measures

We appreciate reports of potential security vulnerabilities affecting our website or services. If you believe you have discovered a security issue, please report it responsibly by contacting us directly. Please include sufficient information to help us reproduce and investigate the issue.

We request that you:

• Avoid accessing or modifying data that does not belong to you.
• Do not intentionally disrupt our services.
• Do not publicly disclose vulnerabilities before we have had a reasonable opportunity to investigate and address them.

SoftGen is committed to reviewing all legitimate security reports in good faith.

Individuals working with SoftGen are expected to:

• Protect confidential information & follow security procedures
• Use authorized systems responsibly
• Report suspected security incidents promptly
• Avoid unauthorized disclosure of client information

SoftGen takes reasonable measures to reduce service disruption through secure development workflows, backup procedures, reliable cloud infrastructure, and recovery planning.

While we strive for high availability, uninterrupted service cannot be guaranteed.

If you have questions regarding this Security Policy or wish to report a potential security concern, please contact us: