Security Policy

1. Infrastructure

Norifly is hosted on cloud infrastructure with industry-standard security controls.

2. Data Protection

• Encryption in transit (HTTPS/TLS)

• Logical isolation between customers

• Regular backups

3. Access Control

• Role-based access (RBAC)

• Least-privilege principle

• Secure authentication

4. Monitoring

• System logging

• Intrusion detection practices

• Incident tracking

5. Vulnerability Management

• Regular updates and patching

• Dependency monitoring

6. Incident Response

Security incidents are investigated and mitigated promptly.

7. Customer Responsibilities

Customers must:

• Protect credentials

• Configure access properly

• Use the system lawfully

8. Disclaimer

No system is completely secure. Norifly does not guarantee absolute protection.

9. Changes

Norifly may update this Security Policy at any time without prior notice.

This policy is for informational purposes only and does not create contractual obligations.

10. Contact

For security-related questions, you can contact us at:

[email protected]
Website: https://norifly.com