Security & Privacy
Your security, safety, and privacy is our top priority.
Security
Aerovy takes a bottom up approach to protecting your data. Our team continues to make investments so you can use Aerovy with confidence.
Security infrastructure
Aerovy's infrastructure is designed with layers of protection to help ensure your data is secure while transmitted, stored, or processed. Protections include but are not limited to encryption, least privilege access, and secure software development.
Operational security
Our engineering team continuously implements new security controls and monitors Aerovy for malicious activity across our infrastructure, networks, and assets.
Product security
Aerovy provides a robust set of in product data protection and admin controls for greater visibility and control over our data. Enterprise admins can also fine tune permission controls and guests, and manage team organizations.
Privacy
Aerovy maintains a comprehensive privacy compliance program and is committed to partnering with its customers and vendors on privacy compliance efforts. This page highlights some of the key aspects of our program.
Data governance
Data governance relates to the policies and procedures that dictate how data is procured and used throughout its life cycle. From creation and collection to processing, distribution, storage and deletion. Aerovy's commitment to data governance is key to keeping our users data secure, private, accurate, and accessible.
Policies
At Aerovy we want to be as transparent as possible with our customers about how we collect, process, store, and use their personal data. In order to achieve this Aerovy maintains comprehensive and detailed policies regarding how we handle your personal information. These policies describe in detail how our users can exercise their rights with regard to their data.
GDPR
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that governs the collection of and use of personal data of EU residents, and that allows data subjects to exercise control over their data. As the GDPR is widely considered to be the most stringent global privacy standard, we have mapped our privacy program to the GDPR and other global privacy regulations.
How we handle your data
At Aerovy our team is dedicated to developing and implementing data privacy processes and safeguards that meet industry standards and best practices. We conduct ongoing training for our teams to ensure that they are up to speed with essential privacy and security practices. Aerovy also holds any vendors that handle personal data to the same data management, security, and privacy practices and standards to which we hold ourselves.
Agreements
At Aerovy we strive to keep all of our agreements up to date with the latest regulations and industry standards. To ensure that our terms track with the GDPR, CCPA and other global privacy standards we continually have our terms assessed by leading privacy experts in multiple jurisdictions.
Compliance
Aerovy maintains a comprehensive security and privacy program to provide advanced security features to our enterprise customers that are designed to protect your data in accordance with various regulatory and industry standards.
SOC 2 Type 2
The SOC 2 Type 2 is an audit report performed by an independent third-party certified by the American Institute of Certified Public Accountants (AICPA) to evaluate a service organization's controls related to the Trust Services Criteria (TSC). The SOC 2 Type 2 report assesses the effectiveness of these controls over a period of time and is intended to provide assurance to customers and stakeholders that the organization has implemented adequate controls to protect their data.
ISO 27001, ISO 27701, ISO 27017, ISO 27018
ISO is an international standard development organization, and Notion has achieved certifications for four ISO standards: ISO 27001, ISO 27701, ISO 27017, and ISO 27018. The standards outline requirements for establishing, implementing, and continuously improving Aerovy's Information Security Management System (ISMS) and Privacy Information Management System (PIMS).
Artificial intelligence (AI) governance
Aerovy leverages AI to improve the core product experience and provide real value to our users in their day-to-day work. We strive to do this in a way that’s trustworthy, reliable, and user-centric.
Safe & secure
Aerovy takes a safety-first approach to artificial intelligence. Our AI features and partners undergo security and legal reviews prior to Aerovy utilizing their services. These security practices apply to our AI features and AI development process.
Data governance
Your data is yours. Our AI systems are prohibited from using Customer Data to train models. The controls and permissions with respect to access and use of customer data will be respected.
