New partner announcement! Mastercard launches Biz360 → 
Your privacy and data protection are our priority
Your business and your trust are at the center of what we do. We’ve developed a product that provides a comprehensive infrastructure to keep all data secure: both your own and your clients’.
vcita is trusted by more than 100,000
business owners worldwide
Penetration testing
Encryption
DDoS protections
GDPR
HIPAA
CCPA
We protect your data
To build a business you’re proud of, you need a solid foundation. And after over 10 years in the digital industry, vcita truly understands and ensures all its users are properly protected on all accounts.
In-transit encryption
We ensure the safety of your communication and interaction with your clients.
Sessions between you and your portal are protected with in-transit encryption using 2,048-bit or better keys, and TLS 1.2 or above.
Web Application and network firewalls
We monitor and prevent potential cyber-attacks with several tools, including network-level firewalling. In addition, the vcita platform contains Distributed Denial of Service (DDoS) prevention defenses, as well as spam detection mechanisms, and Web Application Firewall (WAF).
Software development lifecycle (SDLC) security
We implement static code analysis technology and human review processes to ensure consistent quality in our software development practices, and prevent any security loopholes as we continuously improve and introduce new features.
Physical security
Our software operates with certified protection mechanisms and is hosted with cloud infrastructure providers such as Amazon Web Service (AWS) and Google Cloud Platform (GCP) with SOC 2 Type II and ISO 27001 certifications, among others. The certified protections include dedicated security staff, strictly managed physical access control, and video surveillance.
Audits and Penetration Testing
We routinely test vcita products and infrastructure by running year-round penetration testing. These tests are conducted by industry experts, to ensure the physical and digital security of our solution and yours.
Data security and privacy
When it comes to the privacy of your most sensitive information, we follow all the
compliance and have all possible regulations in place to safeguard them.
GDPR
Data processed with vcita is processed in compliance with the General Data Protection Regulation (GDPR).
HIPAA
vcita helps healthcare providers protect sensitive records and their patients’ confidential health information by processing data in compliance with HIPAA.
CCPA
vcita offers full transparency into privacy rights to consumers residing in the State of California in relation to their personal information. We align our practices with the California Consumer Privacy Act of 2018 (CCPA).
Data storage outside of the EU
vcita stores data with Amazon Web Service (AWS) which is GDPR ready and follows the new SCCs as further provided in our DPA.
UK Data protection
Data processed with vcita is processed in compliance with GDPR. These requirements also apply to anyone processing data of individuals in the UK.
Our UK-GDPR representative may be reached at [email protected]
Our data protection team
vcita’s team is responsible for monitoring and advising our ongoing privacy compliance. They serve as a point of contact on privacy matters for data issues and supervisory authorities. Our Data Protection Team may be reached at: [email protected]. Our EU-GDPR representative may be reached at [email protected].
Let’s talk legal!
Thorough and detail-oriented? So are we.
If you’re looking for the fine print, or need a signed copy, check out the links below.
Our Privacy Policy
We use personal data and non personal data in accordance with our privacy policy which you may find here.
Our Data Processing Agreement (DPA)
vcita provides a Data Processing Agreement/addendum (DPA) which you may find here. If you require a signed copy of the DPA, please download, sign, and send us the signed copy to [email protected], and we’ll provide you with a countersigned copy.
Our Business Associate Agreement
vcita’s HIPAA-compliant services are available only in connection with a Business or Platinum account. If you have purchased a Business or Platinum subscription, and are a HIPAA-covered entity or business associate, you may access and download the vcita Business Associate Agreement which may be found on your “My Account” page. To reach this page, please log into your vcita account and go to “Settings” from the main menu. Please download, sign, and send us the signed copy to [email protected] and we’ll provide you with a countersigned copy.
Give your small business that big business vibe.
Curious what vcita can do for your business?