Geotab Security Center
Geotab’s security policy
Geotab demonstrates our commitment to information security and data protection through validation of our system and processes. Compliance certifications and authorizations:
•ISO/IEC 27001:2013 Information Security Management System
•FedRAMP Authorized for Geotab cloud-based telematics platform
•FIPS 140-2 validation for the Geotab GO device cryptographic library
Cybersecurity is an essential part of your business, now more than ever. Learn data security best practices for executives. Get information on cybersecurity notifications and standards to help mitigate cyber risk.
Customer data privacy
Maintaining the privacy of customers’ data is an important priority of Geotab’s data management activities. As a data processor, Geotab implements and maintains technical and organizational measures designed to keep customer data secure and private. Individual customer data is processed according to the customer’s instructions and chosen settings that enable the proper functioning of the solution and its ongoing improvement. Geotab has carefully controlled and audited access to personal data in a customers’ database in the event that the customer needs support on their data for safety or troubleshooting.
Vulnerability responsible disclosure
If you believe you have found a security vulnerability that could impact Geotab or our customers, we encourage you to let us know right away. We will investigate all legitimate reports and do what is required to fix the problem as soon as possible. We ask that all researchers follow our Vulnerability Disclosure Policy and make a good faith effort to avoid privacy violations, destruction of data and interruption of services during your research.
Geotab’s CVE-2021-44228 Response
The US Cybersecurity and Infrastructure Security Agency (CISA) recommends taking immediate action on the Log4j vulnerability.Read blog post
Geotab’s security leadership team
Contact Geotab Security
Thank you, our security team will contact you as soon as possible.