<img src="https://certify.alexametrics.com/atrk.gif?account=knr3r1xk/v20jL" style="display:none" height="1" width="1" alt="">
Skip to content
Close
Log in
Schedule a Demo
Log in
Schedule a Demo
TABLE OF CONTENTS
loading...

Security Statement

OrderEase utilizes some of the most advanced technology for Internet security available today. When you access our site your information is protected using both server authentication and data encryption, ensuring that your data is safe, secure, and available only to Registered Users in your organization. Your data will be inaccessible to unauthorized users. OrderEase requires that each User in your organization have a unique user name and password that must be entered each time a User logs on. OrderEase issues an encrypted session “cookie” only to record encrypted authentication information for the duration of a specific session. The session “cookie” does include the username but not the password of the user. All the communication between your browser and our server is encrypted using industry standard SSL technologies.In addition, OrderEase is hosted in a secure server environment that uses a firewall and other advanced technology to prevent interference or access from outside intruders. For more detailed information on our server environment please contact security@OrderEase.com. Credit card information is handled according to PCI DSS standards, and we are compliant in our handling of fee processing and record keeping activities.

Reporting a Potential Security Vulnerability

Privately share details of the suspected vulnerability with OrderEase by sending an email to security@OrderEase.com. Provide full details of the suspected vulnerability so the OrderEase security team may validate and reproduce the issue.

Marketplace Data Protection

OrderEase protects marketplace data obtained through integrations such as the Amazon Seller Central, Wayfair, and Shopify. Access to marketplace data is restricted to authorized personnel and used only for operational purposes including order processing, fulfillment confirmation, and inventory synchronization.


Data Retention

OrderEase retains marketplace order data containing personally identifiable information only for the operational period required to support fulfillment, reconciliation, and dispute resolution processes. Data is deleted or anonymized according to internal retention policies.


Logging and Monitoring


OrderEase maintains centralized logging of system activity and administrative access. Logs are monitored for anomalous behavior and investigated as part of our security monitoring and incident response procedures.



Incident Response


OrderEase maintains a documented incident response process for handling suspected security incidents including unauthorized access, data exposure, or system compromise. Incidents are investigated, contained, and remediated according to defined escalation procedures.


Access Controls


Access to production systems and marketplace data is restricted using role-based access controls and least-privilege principles. Employees are individually authenticated and granted access only based on job responsibilities.


Secure Development Practices


OrderEase follows a controlled development lifecycle including peer review of code changes and remediation of vulnerabilities identified during development or runtime.


Backup and Recovery

Encrypted backups of production systems are maintained within our cloud infrastructure using geographically redundant storage. Restore procedures are documented to support operational recovery objectives.

 

The OrderEase Security Team Commitment

For all security vulnerabilities, the OrderEase security team commits to the following:

  1. To respond in a timely manner, acknowledging receipt of your report
  2. To provide an estimated time frame for addressing the reported vulnerability
  3. To notify the reporting individual when the vulnerability has been investigated completely, and of any corrective action taken if necessary