Yes, you can use Flusk Vault to perform external security audits in your name for your customers with a special permission.
→ This is due to our legal obligation to obtain direct consent from our customers before we can process their data through our sub-processor qualification.
Is considered as delivering external security audits:
Conducting a security audit and writing a report for a third-party customer with or without mention to Flusk Vault
Using Vault an app that does not belong to you
Delivering a security audit on behalf of an agency for an app that the agency did not develop
Is not considered as delivering external security audits:
Using Vault within your agency for apps that you have fully developed
Providing service to your own development team using Vault
Getting a special permission
If you need to deliver a security audit for a customer in your name, you can get a special permission from us.