Data Privacy & Protection
RGA data protection policies prohibit the disclosure or misuse of information about your customers.
AURA data is classified as restricted, which requires the most stringent level of security and data protection controls.
AURA data stays in the AWS region where services are consumed so that data does not cross geographical boundaries. AURA services run solely on HIPAA compliant Amazon Web Services (AWS) platforms and services.
All data, at rest and in transit, use the latest cryptographic protocols for encryption. Anti-malware solutions exist to protect all AURA workloads. Least privilege principles are in place to limit the number of individuals who have access to your data. Regular host and network level vulnerability scans are executed, and findings remediated as a priority.