Security Policy
Last updated: January 1, 2025
1. Commitment to Security
NexChakra Technologies (“NexChakra”, “we”, “us”, or “our”) is committed to maintaining the confidentiality, integrity, and availability of client and institutional data. Security is a core pillar of our SaaS platform and services.
2. Data Protection Measures
- Encryption of data in transit (TLS/SSL) and at rest
- Role-based access controls and multi-factor authentication
- Regular security audits and penetration testing
- Secure coding practices and vulnerability patching
3. Infrastructure Security
Our infrastructure is hosted on globally recognized cloud providers with compliance certifications (ISO 27001, SOC 2, GDPR). We employ firewalls, intrusion detection systems, and continuous monitoring to safeguard against threats.
4. Incident Response
In the event of a security incident, NexChakra follows a structured incident response plan:
- Immediate containment and investigation
- Notification to affected clients within 72 hours
- Remediation and preventive measures
- Documentation and transparency reporting
5. Compliance & Global Standards
NexChakra complies with global security and data protection standards, including GDPR (Europe), CCPA (California), and relevant Indian and Nepali regulations. We continuously update our practices to align with evolving global requirements.
6. Client Responsibilities
While NexChakra provides enterprise-grade security, clients are responsible for:
- Maintaining strong passwords and access controls
- Ensuring authorized use of accounts
- Promptly reporting suspicious activity
7. Updates to This Policy
NexChakra may update this Security Policy periodically. Any changes will be posted on this page with a revised “Last Updated” date. Continued use of our services after updates constitutes acceptance.
8. Contact Us
For security-related inquiries or reports, please contact us: