Skip to content
Close
Contact Us
Contact Us

Security Statement

Last Updated: 01/01/2026
Effective Date: 01/01/2026

Security Statement

Lynxis is committed to providing best-in-class services to the transportation industry. In support of this commitment, Lynxis has developed information security risk management policies to ensure the confidentiality, integrity, and availability of the data within our network. This Security Statement (the “Statement”) describes some of the security controls that Lynxis has implemented pursuant to those policies. This Statement applies to Lynxis software and services, but not necessarily to the other related services provided by Lynxis or to our publicly accessible websites.

 

Capitalized terms used in this Statement but not defined herein shall have the meaning given to them in specific Lynxis Service Level Agreements.

 

Audits and Certifications

Lynxis completes or maintains the following data protection audits and certifications in conjunction with our SOC 2 audits:

 

Vulnerability Scanning

The Lynxis network and Lynxis software and services are verified protected against vulnerability attack by industry leading vulnerability security scanning vendors.

 

Infrastructure

The Data that is received by Lynxis software and services is stored at third party infrastructure service providers (the “Data Center Providers”) in multiple locations with automated and regularly scheduled multi-region and geographically remote backups. Additionally, all infrastructure configuration information is maintained separately from the Data Center Providers. Secondary locations are provisioned with sufficient computational, network, and storage resources to replace the functionality of the primary locations and restore the services if required.

 

Vendor Risk Management

Lynxis ensures that Data Center Providers have recently completed a Service Organization Controls (SOC) 2 Type II audit. Additionally, those third parties are contractually obligated to maintain the confidentiality of the data to the fullest extent allowed by applicable law.

 

Physical Security Controls

  • Access to the Data Center Providers’ data center facilities is restricted to authorized personnel only.
  • The Data Center Providers’ data center facilities are secured by professional security guards and monitored by closed circuit television 24/7.
  • A physical access control system (ID card and/or access code) has been implemented at entry and exit points of the Data Center Providers’ data center facilities.
  • All visitors must be escorted by an employee of the Data Center Providers or, in some cases, a permanent badge-holder at all times when visiting the Data Center Providers’ data center facilities.

 Availability and Disaster Recovery

  • The Data Center Providers’ data center facilities are designed, built, and maintained to withstand reasonably foreseeable adverse weather and other natural conditions. Processing capacity is monitored on a daily basis.

  • The Data Center Providers have installed and maintain at least the following environmental protections:
    o    Cooling systems
    o    Battery-powered backup electrical supply and/or backup electrical generators
    o    Redundant communications lines
    o    Smoke/fire detectors
    o    Automatic fire suppression systems

  • The status of environmental protection is continuously monitored by the Data Center Providers.

  • Environmental protections are tested and maintained regularly by the Data Center Providers.

 

Data Security Controls

Technical Security Controls
Lynxis maintains at least the following technical security controls and policies:

  • The Lynxis application product offerings provide end-to-end encryption using Transport Layer Security (TLS) protocol version 1.2 or higher with a minimum of 256-bit encryption for personal data in transit.

  • The Lynxis software application product offerings and IT systems are patched expeditiously.

  • External points of connectivity in the Lynxis network architecture are protected by firewall(s).

  • Network and database activities are logged and actively monitored for potential security events including intrusion.

  • Lynxis user passwords are stored in a one-way hash.

Administrative Security Controls

Lynxis maintains at least the following administrative security controls and policies:

  • Lynxis’s workforce participates in security awareness training.

  • Physical and logical access to the IT systems that process the data is limited to those officially authorized personnel with an identified need for such access.

  • Lynxis conducts pre-employment background checks to help ensure employee reliability.

  • Lynxis has implemented a disaster recovery plan, which will be regularly tested. The IT systems architecture of Lynxis services includes redundant backups of critical hardware and software components.

 

Data Protection Officer

If you have any queries or concerns about Security you can contact our Data Protection Officer at:

Lynxis LLC
10615 Texland Blvd # 100,
Charlotte, NC
Email: security@lynxis.com

We will address your concerns in accordance with applicable law.