Effective Date: June 2023
At Rollx Vans, we are committed to ensuring the security and protection of our customers’ information. This Security Policy outlines the measures and practices we employ to safeguard data in accordance with the FTC Safeguard Rules. By accessing or using our website and services, you agree to adhere to the terms and practices outlined in this policy.
- Information Security
1.1. Data Classification and Handling We classify data based on its sensitivity and ensure appropriate handling measures are in place. All employees must adhere to data handling guidelines to maintain the confidentiality, integrity, and availability of information.
1.2. Access Controls Access to systems, networks, and data is granted based on the principle of least privilege. We implement user access controls to restrict access to authorized individuals and regularly review and revoke access as needed.
1.3. Password Protection We enforce strong password policies to prevent unauthorized access. Employees are required to use unique, complex passwords and regularly update them. Passwords should not be shared or stored in an insecure manner.
1.4. Security Awareness and Training We provide ongoing security awareness and training programs to all employees, promoting a culture of security awareness. Employees are educated about security best practices, policies, and procedures to ensure compliance.
- Physical Security
2.1. Physical Access Controls We implement physical access controls to protect our premises, data centers, and sensitive areas. Access to facilities and storage areas containing customer information is restricted to authorized personnel only.
2.2. Secure Disposal When disposing of physical documents or storage media containing sensitive information, we follow secure disposal procedures. This includes shredding documents and properly destroying or wiping storage media.
- Network and System Security
3.1. Network Protection We employ industry-standard security measures to protect our network infrastructure, including firewalls, intrusion detection systems, and regular security updates. Network access is restricted, and appropriate security controls are in place to safeguard against unauthorized access and malicious activities.
3.2. System Patching and Updates We regularly update and patch our systems, applications, and software to address security vulnerabilities and ensure protection against known threats. Timely installation of security updates is a priority.
3.3. Malware Protection We deploy and maintain up-to-date anti-malware solutions on all systems to detect and prevent malicious software infections. Regular scanning and monitoring of systems are conducted to identify and respond to potential threats.
- Incident Response and Management
4.1. Incident Reporting All employees are responsible for promptly reporting any suspected security incidents or breaches to the designated security contact within Rollx Vans. Reports should include relevant details to facilitate timely incident response and mitigation.
4.2. Incident Response Plan We maintain an incident response plan that outlines procedures for responding to security incidents. This includes containment, eradication, recovery, and post-incident analysis. The plan is regularly reviewed, tested, and updated to ensure effectiveness.
4.3. Data Breach Notification In the event of a data breach or unauthorized disclosure, we will adhere to legal requirements and promptly notify affected individuals, regulatory authorities, and other relevant stakeholders.
- Compliance Monitoring and Review
We conduct periodic internal audits and assessments to evaluate the effectiveness of our security controls, policies, and procedures. This includes reviewing and updating security measures based on changes in technology, business processes, and regulatory requirements.
- Contact Us
If you have any questions or concerns regarding our Security Policy or our security practices, please contact us at:
Physical Address: Rollx Vans, 6591 Highway 13 West, Savage, Minnesota 55378
- Updates to this Policy
We may update this Security Policy to reflect changes in our practices or legal requirements. We will post the revised policy on our website, and the revised policy will be effective from the date of publication.
By accessing or using our website and services, you acknowledge and consent to the terms and practices outlined in this Security Policy.