Security

Vymo's facilities, processes, and systems are reliable, robust, and tested by third parties.

Data security

Location data is retained on Vymo servers for 60 days before automatic deletion. We adhere to strict network, application, and operational level security policies.

ISO 27001 certification

Vymo is an ISO 27001 certified company.

ISO 27001 (formally known as ISO/IEC 27001:2013) is a specification for an information security management system (ISMS). With ISO's robust information security management system (ISMS) in place, a full spectrum of security best practices are implemented across the company.

Multiple data centers

We utilize multiple data centers to enable geo-localized deployments for low latency and high performance. The Vymo App determines the optimal data center for login. User credentials are not replicated across multiple data centers, but are efficiently mapped to ensure proximity access.

Device security

An allow list restricts mobile device access to the Vymo app to authorized devices only.

Access the User devices report for details such as:

Name of the user
Operating system of the device
Device manufacturer name
Device model
Timestamp of the last recorded activity
IMEI 1 and IMEI 2 for Android 9 or earlier
Device identifier (Android ID for Android 10 and later, UDID for iOS)

Details for the last 30 days are available per user, with features to edit IMEI information individually or via bulk upload.

Data access

Vymo uses group-based access and reporting hierarchy to decide who can access what data. See Group-based data access.

Screenshots

Configuration options within Vymo can disable the ability to take screenshots, helping prevent the leakage and misuse of sensitive information such as dates of birth or national IDs. See Preventing screenshots.