Legal

Introduction

Our Company and Products

OmniSuite was developed for businesses by an agency to help marketing professionals and agencies achieve and exceed their success benchmarks. We enhance automation, improve communication, and boost scalability in a consumer-friendly way, providing future-ready updates that align with these priorities. Our highlevel developers ensure we deliver innovative solutions to revolutionize business systems.

Since its inception in 2022, OmniSuite has grown exponentially, creating a significant impact on the tech community and SaaS industry. At OmniSuite, we measure success by the success of our customers, prioritizing the optimization of our offerings to meet their evolving needs.

Our AI-powered all-in-one sales, marketing, and customer relationship management (CRM) platform offers essential features for agencies and marketers. This expansive software solution enables customers to set ambitious goals and achieve them, supported by a team of experts.

OmniSuite Security and Risk Focus OmniSuite is committed to safeguarding customer data through a comprehensive approach to security. This includes implementing robust corporate, product, and infrastructure security programs overseen by our Legal Team in collaboration with other departments.

Our Security and Compliance Objectives

OmniSuite has developed its security framework using SaaS industry best practices, focusing on:

Customer Trust and Protection: Delivering superior products and services while safeguarding privacy and confidentiality.Availability and Continuity of Service: Ensuring service availability and minimizing risks to continuity.Information and Service Integrity: Preventing unauthorized alterations to customer information.Compliance with Standards: Meeting or exceeding industry best practices.

OmniSuite Security Controls

To protect entrusted data, OmniSuite utilizes multiple layers of administrative, technical, and physical security controls.

Infrastructure Security

Cloud Hosting Provider: OmniSuite’s product infrastructure is hosted with Google Cloud Platform and Amazon Web Services (AWS) in the United States. These providers ensure a minimum uptime of 99.5% and 99.95% respectively, with robust compliance and security measures validated through independent audits.Links to Service Terms:

AWS Terms of Service: https://aws.amazon.com/service-terms/

Google Cloud Terms of Service: https://cloud.google.com/terms

Network and Perimeter

OmniSuite enforces multiple layers of filtering and inspection on connections to the application. Firewalls are configured to deny unauthorized connections, and changes are controlled through standard processes.

Configuration Management

Infrastructure is managed through automated processes. Deviations from baseline configurations are detected and corrected within 30 minutes. Servers are patched or replaced as needed to maintain compliance.

Logging

All actions within OmniSuite applications are logged, indexed, and stored in a secure central system. Access to logs is tightly controlled, ensuring availability for investigations or response activities.

Alerting and Monitoring

Automated monitoring systems detect and alert for anomalies such as error rates or potential attacks. Predefined triggers initiate immediate corrective actions to maintain service integrity.

Application Security

Web Application Defenses: OmniSuite protects customer content through firewalls and security monitoring. Protections against DDoS attacks ensure continuous availability.Development and Release Management: Code undergoes rigorous review, static and dynamic testing, and is deployed in a controlled CI/CD pipeline. Segmentation between environments prevents unauthorized access.Vulnerability Management: OmniSuite performs regular vulnerability scans, annual penetration testing, and prioritizes mitigation of identified risks.

Customer Data Protection

Data Classification: Customers are responsible for ensuring appropriate data use. Sensitive information such as credit card numbers should not be stored in OmniSuite products.Tenant Separation: Customer data is logically separated with unique IDs and access rules validated continuously.Encryption: All data is encrypted in transit using TLS 1.2 or 1.3 and at rest using AES-256 encryption.Key Management: Keys are securely managed, rotated regularly, and TLS certificates are renewed annually.

Data Backup and Disaster Recovery

OmniSuite employs redundancy and backup strategies to ensure data protection:

System Backups: Backups are performed daily and retained for seven days, enabling easy restoration.Backup Protections: Access control restrictions and WORM protections safeguard backups.Customer Data Recovery: Customers can recover certain data directly within 30 days of deletion or use APIs for additional backup needs.

Organizational and Corporate Security

Background Checks: Employees undergo third-party background checks before hiring.

Policy Management: Security policies are reviewed and approved annually, with a Written Information Security Policy guiding data handling and privacy.

Training: Employees complete annual CyberSafety training, including phishing awareness.

Identity and Access Control

Product User Management: Customers manage user access with granular authorization rules. Two-factor authentication is enforced for all accounts.Employee Access to Customer Data: Role-based access control minimizes employee access. Temporary access is logged and monitored.

Compliance

OmniSuite follows robust practices to maintain compliance:

Sensitive Data Processing: Payments are processed by PCI-compliant providers; OmniSuite does not store credit card information.Privacy: OmniSuite does not sell personal data. Data retention policies ensure compliance with regulatory requirements.Breach Response: Customers are notified as required by law in the event of a data breach.GDPR: OmniSuite offers tools to support customers’ GDPR compliance efforts.

Contact Us

If you have any questions about this document, please contact us at

[email protected]

.

Let me know if any further revisions or additions are needed!