Skip to Content

Security & Privacy FAQ

FAQ OdooBot 34 views
Questions about data security, privacy, compliance, and access control.

Security & Privacy FAQ

Information about how we protect your data and maintain security.

How is my data protected?

We implement multiple layers of security:

  • Encryption in Transit: All connections use TLS 1.2+ encryption
  • Encryption at Rest: Database and file storage are encrypted
  • Isolation: Each instance runs in an isolated container
  • Firewalls: Network-level protection against unauthorized access
  • Monitoring: 24/7 security monitoring and alerting
Who can access my Odoo instance?

Access is strictly controlled:

  • You and your users: Anyone you grant access to in Odoo
  • VedTech Support: Only with your explicit permission via support access feature

We never access customer data without permission except in cases of:

  • Security incidents requiring investigation
  • Legal requirements
  • System maintenance (infrastructure only, not data)
Are you GDPR compliant?

Yes. We are committed to GDPR compliance:

  • Data processing agreements available on request
  • Right to data portability (download your data anytime)
  • Right to erasure (request data deletion)
  • Data breach notification procedures

Odoo itself includes GDPR features like data anonymization and consent management.

Do you have SOC 2 certification?

We follow security best practices aligned with SOC 2 principles:

  • Security policies and procedures
  • Access control management
  • Encryption standards
  • Incident response procedures
  • Regular security assessments

For Enterprise customers requiring formal SOC 2 reports, please contact us.

How do I enable two-factor authentication (2FA)?

Enable 2FA in your Odoo instance:

  1. Go to Settings > Users
  2. Select your user
  3. Click Enable Two-Factor Authentication
  4. Scan the QR code with an authenticator app (Google Authenticator, Authy, etc.)
  5. Enter the verification code to confirm

Tip: Encourage all users to enable 2FA for better security.

What happens if there's a security breach?

Our incident response process:

  1. Detection: 24/7 monitoring systems detect anomalies
  2. Containment: Immediate isolation of affected systems
  3. Investigation: Determine scope and impact
  4. Notification: Affected customers notified within 72 hours
  5. Remediation: Fix vulnerabilities and restore services
  6. Post-mortem: Review and improve security measures
Can I download/export all my data?

Yes! You own your data and can export it anytime:

  • Full Backup: Download complete database + files from your backup page
  • Data Export: Use Odoo's built-in export features for specific records
  • API Access: Programmatically extract data via Odoo APIs

We never hold your data hostage. You can leave anytime with all your data.

How do you handle data deletion requests?

When you cancel your subscription or request deletion:

  • 7-day grace period: Instance suspended, data preserved
  • After 7 days: Instance and data permanently deleted
  • Backup deletion: Backups deleted within 30 days

For immediate deletion requests (GDPR right to erasure), contact support.

Was this article helpful?

Related Articles

General FAQ
FAQ
Technical FAQ
FAQ
Pricing & Plans FAQ
FAQ
Search Articles
More in FAQ
View all articles
Still need help?

Our support team is ready to assist you.

Create Ticket
Skip to main content