Skip to main content
TaurusX

Legal

Security

How TaurusX OS protects your data and the systems it operates on.

Last updated: 2026

Download PDF

1. Security Architecture

TaurusX OS is designed with security as a foundational layer. The Guardian system provides runtime safety enforcement, anomaly detection, policy evaluation, and circuit-breaker protection for all agent operations. All inter-service communication is authenticated and encrypted.

2. Data Encryption

All data in transit is encrypted using TLS 1.2 or higher. Data at rest is encrypted using AES-256. Cryptographic keys are managed through a dedicated key management service and rotated on a regular schedule.

3. Access Controls

TaurusX OS enforces role-based access control (RBAC) across all APIs and the Guardian Admin Console. Roles include viewer, operator, and admin, each with strictly scoped permissions. Service-to-service authentication uses short-lived tokens with least-privilege grants.

4. Agent Safety and Guardian Policies

Every agent operation is evaluated against Guardian safety policies before execution. Risk scoring, rate limiting, and circuit breakers prevent runaway or malicious agent behaviour. All policy changes are versioned and auditable.

5. Vulnerability Management

We conduct regular security assessments, penetration tests, and dependency audits. Critical vulnerabilities are remediated within 24 hours; high-severity issues within 7 days. We maintain a responsible disclosure programme and welcome reports from the security community.

6. Responsible Disclosure

If you discover a security vulnerability in TaurusX OS, please report it to security@taurusx.app. Do not disclose vulnerabilities publicly until we have had 90 days to investigate and issue a fix. We will acknowledge your report within 48 hours and keep you informed throughout the remediation process.

7. Incident Response

We maintain a 24/7 incident response capability. In the event of a security breach affecting your data, we will notify affected users within 72 hours of becoming aware of the incident, in accordance with applicable data protection regulations.

8. Compliance

TaurusX OS is designed to support compliance with common regulatory frameworks including SOC 2, GDPR, and CCPA. Detailed compliance documentation is available to enterprise customers under NDA. Contact corporate@hmgtechgroup.com for more information.

TaurusX — by HMG Tech Group  ·  Atlanta, GA  ·  security@taurusx.app