Official Unofficial, Inc.

Appearance

Security Policy

Last Updated: February 14, 2025

Our Commitment to Security

Official Unofficial, Inc. is committed to protecting user data and maintaining the security of our platform. We implement industry-standard security measures and best practices to prevent unauthorized access, maintain data accuracy, and ensure the appropriate use of information.

Data Protection Measures

Infrastructure Security

Our services are built on modern cloud infrastructure with multiple layers of security controls. We implement:

  • End-to-end encryption for data transmission
  • Secure data storage with encryption at rest
  • Regular security audits and vulnerability assessments
  • Automated monitoring and alerting systems
  • Regular backup procedures and disaster recovery planning

Access Control

We maintain strict access controls across our organization:

  • Role-based access control (RBAC) for all systems and data
  • Multi-factor authentication requirement for all employee accounts
  • Regular access reviews and prompt termination of unused accounts
  • Detailed access logging and monitoring
  • Secure authentication mechanisms for user accounts

Incident Response

We maintain an incident response plan that includes:

  • Immediate investigation of potential security incidents
  • Prompt notification to affected users as required by applicable laws
  • Coordination with relevant authorities when necessary
  • Post-incident analysis and implementation of preventive measures

Vulnerability Reporting

We appreciate the work of security researchers and the broader security community. If you discover a potential security vulnerability in our services:

  1. Email your findings to security@unofficial.run
  2. Provide detailed information about the vulnerability
  3. Allow reasonable time for us to investigate and address the issue before public disclosure
  4. We will acknowledge receipt of your report
  5. We will credit you for responsible disclosure in our security advisories
  6. We will compensate researchers for valid reports based on the severity and as financial resources allow
  7. We reserve the right to not disclose progress or details of our investigation

Compliance

We maintain compliance with relevant security standards and regulations, including:

  • GDPR data protection requirements
  • CCPA privacy regulations
  • Industry standard security practices

Security Recommendations for Users

To help maintain the security of your account, we recommend:

  1. Store any seed phrases offline and securely
  2. Enable two-factor authentication when available for secondary accounts
  3. Keep your device and operating system software up to date
  4. Be cautious of phishing attempts and suspicious links
  5. Report any suspected security issues immediately

Updates to Security Policy

We regularly review and update our security practices to respond to evolving threats and implement improved security measures. This policy may be updated to reflect these changes.

Contact

For security-related inquiries or to report security issues, please contact:security@unofficial.run