Security
We are committed to keeping our customers’ data secure. Xyte implements the strictest security measures, and our team is constantly investing in security to stay up to date so you can rest assured that your data is kept safe.
OverviewXyte manages the data of global organizations. We understand that our customers expect us to protect their data to the highest degree and are committed to providing them with a secure and reliable environment. Our security model and controls are based on international standards and industry best practices.
‍
Our systems are hosted on Amazon Web Services (AWS). This allows us to provide a reliable service and ensures your data is available whenever you need it. AWS employs leading physical and environmental security measures, resulting in highly resilient infrastructure. For more information about its security practices, see the AWS security page

ResiliencyWe keep all our systems rigorously up to date in order to block any attempt to take advantage of known vulnerabilities. Xyte runs penetration tests on a regular basis to test the platform’s security and resilience to cyber attacks.

Data EncryptionXyte encrypts all data both in flight and at rest so no unauthorized third party can gain access to your or your customers’ data.
‍
Data Availability & IntegrityXyte runs in multiple zones and regions in order to provide continuous service with minimal downtime. Xyte’s data is continuously backed up to allow fast and full recovery in case of data erasure or alteration. Xyte tests its backup and restore procedures on a regular basis in order to ensure their efficacy and be prepared for any scenario.

Xyte’s SLA policy is available upon request.

Privacy
Xyte is committed to protecting the privacy of your and your customers’ data, enabling you to choose where your primary data is located and guarding it against unauthorized access with industry best practices.
OverviewXyte recognizes the importance of personal data and of respecting the privacy rights of individuals. We are committed to integrating privacy into our products and services so that our customers are able to be compliant in using our offerings. Xyte is directly bound by the provisions of Israel’s Privacy Protection (Data Security) Regulations. We support our clients in compliance with the GDPR and other national data protection laws by implementing requirements of these legal frameworks in our products and operations.

GDPR & DPAXyte supports its customers in achieving compliance with the General Data Protection Regulation (GDPR). Among other measures, we offer our clients a data processing agreement (DPA) to comply with article 28 of the GDPR.
‍
View Xyte’s DPA.
‍
Privacy by DesignWe follow Privacy by Design principles that govern the treatment of data exposed to Xyte. These are applied worldwide and reflected across the company in development plans, business plans, and day-to-day operations.

SubprocessorsXyte uses only service providers that guarantee a high level of data protection and security and signs data processing agreements with all providers that process data on our behalf. A list of all subprocessors authorized to process data for Xyte is available at https://dev.xyte.io/docs/data-subprocessors.

View Xyte's Privacy Policy.

Compliance & Certifications
We obtain industry-accepted certifications, comply with all current industry regulations, and work only with trusted partners so you can feel confident that your company and customer data remains secure and compliant.
Xyte has completed a SOC 2 Type 2 audit for the period of 2022–2023. The full report will be available upon request and signing of an NDA.

Xyte has completed a GDPR compliance assessment and is GDPR compliant.