**Security Policy MEGAVERZ PVT LTD — MEGASCORES™** Last Updated: November 2025 MEGAVERZ PVT LTD is committed to safeguarding the security, privacy, and integrity of all data associated with MEGASCORES™, our sports-engagement platform. This Security Policy outlines the technical, administrative, and operational measures implemented to ensure that user information, platform systems, and digital assets remain protected against unauthorized access, misuse, loss, or breaches. 1. Security Commitment MEGASCORES™ is designed with a security-first approach. Our systems, processes, and infrastructure are built to meet modern security standards, including secure coding practices, continuous monitoring, and proactive threat detection. We prioritize user trust and platform integrity at all times. 2. Data Encryption & Protection To protect user information: Data in Transit: All communication between users and MEGASCORES™ servers is encrypted using industry-standard HTTPS/TLS protocols. Data at Rest: Sensitive information stored on our servers is encrypted using secure algorithms. Password Security: User passwords are hashed and never stored in plain text. Access Controls: Internal systems are accessible only through authenticated, role-based permissions. No financial data or payment card information is collected or stored on the platform. 3. Infrastructure & Network Security MEGASCORES™ utilizes reputable hosting providers with advanced security infrastructure. Our security measures include: Firewalls and network segmentation Intrusion detection and prevention systems (IDS/IPS) DDoS protection Regular vulnerability scans and security patching Continuous uptime monitoring Servers are hosted in secure environments with physical access restrictions. 4. Application-Level Security We follow standardized software development and testing methods to ensure platform safety. This includes: Secure coding practices aligned with OWASP guidelines Regular code reviews and audits Automated scanning for vulnerabilities Routine penetration testing Input validation and anti-tampering measures These steps ensure MEGASCORES™ remains stable, safe, and resilient. 5. Access Management & Internal Controls Only authorized MEGAVERZ personnel have access to sensitive systems or data. Measures include: Multi-factor authentication (MFA) Strict role-based access Zero-trust internal access principles Continuous activity logging Periodic access reviews Employees undergo training on data security, confidentiality, and responsible handling of information. 6. User Safety & Account Protection Users play an important role in keeping their accounts secure. We encourage: Strong, unique passwords Avoiding sharing login credentials Reporting suspicious activity promptly Keeping devices updated with latest security patches If unauthorized access is suspected, MEGASCORES™ may lock or suspend accounts to prevent damage. 7. Third-Party Services MEGASCORES™ may use trusted third-party partners for hosting, analytics, and infrastructure support. All such partners comply with strict confidentiality and security obligations. We do not share user data with third parties for advertising or unrelated business activities. 8. Incident Response In case of a potential security incident: Our monitoring systems alert security teams Immediate investigation is conducted Affected areas are isolated and secured Users are informed if their data is impacted Preventive steps are implemented to avoid recurrence MEGAVERZ maintains a proactive incident management framework. 9. Policy Updates This Security Policy may be updated periodically to reflect advancements in technology, evolving threats, or regulatory changes. Updates will be reflected with a new “Last Updated” date. 10. Contact Us For security concerns, reporting vulnerabilities, or seeking clarification: ✉️ hello@megascores.in Head Office: Paras Trade Centre, Unit 124, 1st Floor, Gwal Pahari, Gurugram – 122003 Operations Office: Arenja Corner, Unit 418, 4th Floor, Sector 17, Vashi, Navi Mumbai – 400703