Security & Compliance

Savage Consulting LLC is committed to maintaining the highest standards of data security, privacy, and operational compliance.

Incident Response Plan

We maintain a comprehensive Incident Response Plan to detect, respond to, and recover from potential security threats. Our process includes:

Monitoring: Continuous monitoring of our systems for unauthorized access or suspicious activity.
Detection: Automated alerts and manual reviews to identify potential security events.
Response: Immediate activation of our response team to contain and mitigate any identified threats.
Recovery: Procedures to restore systems and data integrity while preventing recurrence.

Notification Policies

Security Incident Notification

In the event of a confirmed security incident or data breach affecting client or partner data, Savage Consulting LLC will notify relevant parties, including Amazon, within 24 hours of detection.

Organizational Changes

We are committed to transparency. Savage Consulting LLC will inform partners, including Amazon, of any significant organizational changes or events that impact our need for or use of information within 30 days of such changes.

Data Protection & Encryption

We employ industry-standard encryption and security protocols to protect sensitive data:

Encryption in Transit: All data transmitted between our systems and clients is encrypted using TLS 1.2 or higher.
Encryption at Rest: Sensitive data stored in our databases is encrypted using AES-256 standards.
Access Control: Strict role-based access controls (RBAC) ensure that only authorized personnel have access to sensitive information.
Data Retention: We retain data only for as long as necessary to fulfill the purposes for which it was collected, in compliance with applicable laws and regulations.