Company Policies

Overview

AeroWave Computing Limited implements comprehensive data protection measures to safeguard customer data and maintain compliance with international data protection regulations.

Security Standards

• ISO 27001: Information Security Management System certification
• SOC 2 Type II: Service Organization Controls compliance
• GDPR: Full compliance with EU data protection regulations
• HIPAA: Compliance available for healthcare workloads (on request)

Data Encryption

• Data in transit: TLS 1.3 with perfect forward secrecy
• Data at rest: AES-256 encryption for all storage
• Database encryption: Transparent Data Encryption (TDE)
• Backup encryption: Encrypted backups with separate key management

Access Controls

• Role-based access control (RBAC)
• Multi-factor authentication (MFA) requirement for administrative access
• Principle of least privilege
• Regular access reviews and audit logging

Permitted Uses

Our services may be used for:

• Scientific computing and research workloads
• Big data analytics and processing
• AI/ML model training and inference
• Enterprise application hosting
• Development, testing, and staging environments

Prohibited Activities

• Illegal content or activities
• Cryptocurrency mining (without prior written approval)
• Denial of service (DoS) attacks or network scanning
• Spam, phishing, or malware distribution
• Unauthorized access attempts to other systems
• Violation of intellectual property rights
• Resource abuse or excessive consumption beyond contracted limits

Enforcement

Violations may result in service suspension, termination, and/or legal action. We reserve the right to investigate suspicious activities and cooperate with law enforcement.

Uptime Guarantee

Support Response Times

Planned Maintenance

• Minimum 7 days advance notice for major maintenance
• Scheduled during low-usage windows when possible
• Emergency maintenance may be performed with shorter notice

Service Cancellation

• 30 days written notice required for contract termination
• Data export available for 7 days after cancellation
• All data permanently deleted 30 days after cancellation
• No refund for partial months of service

Refund Eligibility

• SLA violations: Service credits as outlined in SLA
• Billing errors: Full refund within 30 days of notification
• Service not delivered: Pro-rated refund
• No refunds for policy violations or voluntary cancellations

Request Process

To request a refund or cancel service, contact support@aerowavecmp.com with your account details and reason for the request.

Backup Strategy

• Frequency: Daily incremental, weekly full backups
• Retention: 30 days for daily, 90 days for weekly backups
• Geographic redundancy: Backups stored in multiple regions
• Testing: Quarterly backup restoration tests

Recovery Objectives

• RPO (Recovery Point Objective): Maximum 24 hours data loss
• RTO (Recovery Time Objective): Service restoration within 4 hours
• Failover: Automated failover for critical services

Certifications & Standards

• ISO 27001 - Information Security Management
• SOC 2 Type II - Service Organization Controls
• GDPR - EU General Data Protection Regulation
• CCPA - California Consumer Privacy Act (where applicable)

Audit Rights

Enterprise customers have the right to:

• Request compliance documentation
• Conduct security audits (with advance notice)
• Review access logs and security reports
• Receive incident notifications