Effective Date: 01/01/2026
Aithur Pty Ltd ( Validet) implements reasonable technical and organisational measures to protect information processed through the Validet platform from unauthorised access, misuse, loss, or disclosure.
1. Security Principles
- Least-privilege access controls
- Secure-by-design architecture
- Defence-in-depth security approach
- Ongoing monitoring and improvement
2. Infrastructure Security
- Secure cloud-hosted environments
- Network firewalls and access controls
- Separation of development, staging, and production systems
- Regular patching and system updates
3. Application Security
- Secure authentication and session management
- Role-based access control
- Input validation and sanitisation
- Mitigation of common security vulnerabilities
4. Data Protection
- Encryption of data in transit using industry standards
- Encryption of data at rest where supported
- Secure handling of credentials, keys, and secrets
- Restricted internal access to production data
5. Incident Management
- Continuous logging and system monitoring
- Defined procedures for responding to security incidents
- Breach assessment and notification where legally required
6. User Responsibilities
Users are responsible for maintaining the confidentiality of their login credentials and ensuring lawful use of the platform.