Security

We are GDPR ready

Levity adheres to the General Data Protection Regulation (GDPR). The GDPR expands the privacy rights granted to European individuals and requires certain companies that process the personal data of European individuals to comply with a new set of regulations. In particular, the GDPR may apply to companies that process the personal data of European individuals and have a presence in the EU (e.g. offices or establishments) and to companies that do not have any presence in the EU but target the European market (e.g. by offering goods or services to the European market) or monitor the behavior of European individuals. We’re here to help our customers in their efforts to comply with the GDPR.

Learn more at Terms of Service.

Servers security
  • All data and services are hosted on our private clouds on AWS, Google GCP, and Microsoft Azure. For more information on each cloud, see AWS Security Information, GCP Security Information, and Azure Security Information.
  • All have a hardened operating systems installation.
  • A Firewall to prohibit unauthorized system access.
  • A regular system patching processes to provide ongoing protection from exploits.
Payment information security
  • Levity does not receive or store any payment information. We use Paddle as a third-party provider to process all payments. Paddle is a company dedicated to this task, and is certified to “PCI DSS SAQ A Compliant”.
  • See Paddle's Privacy Policy
Data security
  • All the network interactions with Levity are encrypted using HTTPS for all access points.
  • All user-sensitive data is kept encrypted in our database. This includes:
    - Authorization tokens
    - Passwords
More questions

If you have a security question please contact our support team at hello@levity.ai. If you believe you have found a security vulnerability within Levity, please submit your report to security@levity.ai.