Effective Date: October 24, 2025

VoxDash’s infrastructure and processes are designed under a shared-responsibility model that leverages the audited controls of Microsoft Azure and Cloudflare. These global providers supply the core hosting, encryption, and protection layers that VoxDash configures, monitors, and complements with additional internal security practices. The platform’s objective is to maintain the confidentiality, integrity, and availability of user data consistent with PIPEDA, GDPR, and CCPA requirements.

Infrastructure and Hosting

VoxDash operates on Microsoft Azure’s managed cloud environment. Azure maintains a broad compliance portfolio, including ISO 27001 certification, SOC 2 Type 2 attestations, and CSA STAR registry listing, and provides physical infrastructure, power redundancy, environmental controls, and audited data-center operations according to its cloud-provider standards. VoxDash configures its deployments within this environment and monitors operations through Azure’s management tools.

Cloudflare delivers global CDN, Web Application Firewall (WAF), and distributed-denial-of-service (DDoS) mitigation services. These layers protect the VoxDash application edge and support resilient content delivery to users worldwide.

Data Encryption

Connections between users and VoxDash are encrypted in transit using industry-standard Transport Layer Security (TLS 1.2 or higher) through Cloudflare’s secure edge network. Connections between Cloudflare and Azure hosting environments are likewise encrypted using TLS. All encryption capabilities are inherited from Azure and the Cloudflare managed security framework. 

Data stored within VoxDash’s Azure environment is encrypted at rest through Azure Storage Service Encryption and Transparent Data Encryption (TDE). Azure’s managed encryption uses the AES-256-bit standard.

Data Backup and Continuity

Production data is backed up daily through Azure’s managed backup service. Azure encrypts backup data at rest, stores redundant copies in geographically separate facilities, and verifies data-integrity checksums automatically. 

Service continuity and disaster-recovery capabilities rely on Azure’s regional redundancy and automated failover systems. 

Network and Application Security

Cloudflare provides WAF and DDoS protection at the network perimeter. These controls inspect traffic and help mitigate malicious or volumetric attacks before they reach VoxDash’s application layer. Within Azure, virtual networks, firewalls, and network-security groups restrict internal traffic to authorized services. 

VoxDash conducts internal security code reviews, ongoing OWASP vulnerability monitoring, and periodic API penetration tests performed by its security team. Findings are tracked, prioritized, and resolved under its secure-development lifecycle.

Access Control and Authentication

Administrative and development access to production systems is limited to authorized personnel following least-privilege principles. Multi-factor authentication (MFA) is supported for all accounts, and enforcement is available to enterprise clients.

Password strength and expiration policies follow current NIST guidelines.

Security Monitoring and Incident Response

Azure Monitor, Application Insights, and Cloudflare analytics provide telemetry for infrastructure and network events. Incident handling follows a documented response workflow that includes triage, containment, and notification procedures consistent with legal obligations.

Sub-Processors

We work only with trusted service providers that meet comparable data protection standards.

A current list of key sub-processors is available at www.voxdash.com/subprocessors.

Questions?

For additional information about our security practices, please contact us. 

(Informational overview. The VoxDash Terms of Service remain the binding document. This text may be updated.)