SECURITY STATEMENT

Introduction

DartsPay Inc., incorporated in Canada, along with its subsidiaries (collectively, “DartsPay”, “we”, “us”, and “our”), is committed to the highest standards of information security. We prioritize protecting the confidentiality, integrity, and availability of our systems and data, especially considering our role in the money services business. This Security Statement provides insight into our security practices and controls designed to safeguard information entrusted to us. It complements the details found in our Privacy Policy regarding data management.

compliance

DartsPay adheres to all applicable Canadian data protection regulations, including the Personal Information Protection and Electronic Documents Act (PIPEDA) and FINTRAC regulations. We strive to maintain robust security measures to fulfill our data protection obligations.",

Data Security

• Data Minimization: We collect and retain only the minimum data necessary to fulfill our business needs and comply with legal requirements.
• Data Encryption: Data is encrypted at rest and in transit using industry-standard encryption algorithms
• Access Controls: Access to data is restricted on a need-to-know basis using role-based access controls (RBAC).
• Data Security Audits: We conduct periodic audits of our security controls to identify and address any potential vulnerabilities.

Information Security

• Security Policy: We maintain a comprehensive Information Security Policy outlining employee responsibilities, acceptable use of information systems, and security protocols. This policy is reviewed and updated regularly
• Employee Training: Employees are trained on information security policies and procedures, including data security best practices.
• Physical Security: We maintain physical security measures to protect our data centers and infrastructure, including access controls, surveillance, and environmental safeguards.
• Network Security: We utilize firewalls, intrusion detection/prevention systems (IDS/IPS), and other network security controls to protect our systems from unauthorized access and malicious attacks.
• Secure Software Development: We employ secure coding practices and conduct vulnerability assessments throughout the software development lifecycle.
• Vulnerability Management: We proactively identify, assess, and remediate vulnerabilities in our systems and software.

Risk Management

• Continuous monitoring
• Regular risk assessments
• Customer due diligence
• Partnership with applicable regulatory bodies
• Implementation of controls designed to prevent and report financial fraud, data breaches, and other security threats

Our commitment to risk management is integral to maintaining the trust of our customers and partners.

Secure Network Connections and Network Security

All customer web applications are secured with HTTPS encryption, ensuring data in transit is protected. Our network architecture is fortified with high-availability firewalls and sophisticated monitoring systems to detect and prevent security threats. We adhere to the principle of least privilege for system access.

Software Development Lifecycle

DartsPay follows a secure software development lifecycle (SDLC), integrating security testing and assessments at each phase. This approach ensures the development of resilient and trustworthy products, with regular reviews to incorporate the latest in security practices and awareness

Supplier and Vendor Relationships

We engage with suppliers and vendors who share our commitment to ethics, lawfulness, and security. Through rigorous screening and binding security obligations, we ensure that our partners contribute positively to the security and confidentiality of the data they handle on our behalf.

Incident Management and Business Continuity

DartsPay has a formal incident response plan and business continuity strategies to handle potential security incidents and ensure service resilience. Our incident response team is trained and ready to manage security events effectively, minimizing impact and swiftly restoring operations.

Data Protection and Privacy

Data protection is paramount at DartsPay. We deploy advanced encryption and adhere to best practices for data management, ensuring the protection of personal and sensitive data in accordance with local laws and our Privacy Policy

Your Responsibility

Data protection is paramount at DartsPay. We deploy advanced encryption and adhere to best practices for data management, ensuring the protection of personal and sensitive data in accordance with local laws and our Privacy Policy.

• Use strong passwords (at least 12 characters containing Alphanumeric characters (numbers, upper & lowercase alphabets) and symbols and change them regularly.
• Be cautious about opening suspicious emails or clicking on unknown links.
• Report any suspected security incidents to DartsPay immediately.
• DartsPay will never request your password

Changes to this Security Statement

We reserve the right to modify this Security Statement at any time. We will post any changes on our website

Contact Us:

If you have any questions about this Security Statement or our data security practices, please contact us at this address

Conclusion

DartsPay is unwavering in its commitment to maintaining the highest standards of information security and risk management. This ensures the safety and reliability of our services for all customers. Our comprehensive security measures and policies reflect our dedication to protecting assets against the ever-evolving landscape of digital threats. We are committed to upholding the trust placed in us by our users and partners