Our Virtual Machines images do not send information to outside servers (ProcessOne or any third-party Servers). The database is created for your own usage and is entirely private. ProcessOne does not collect any informations from it.
Please note that XMPP protocol is federated and if you enable federation, your server instance may communicate / share information with other XMPP servers in the context of allowed by the XMPP protocol.
We applied state of the art security mechanism when packaging our Virtual Machine. However, you are responsible for keeping the image up to date and apply general security patches.
You are also responsible for configuring ejabberd with your own set of requirements regarding encryption, service enabled. ProcessOne is not responsible for any security issue relating to a misconfiguration of our platform, even in the case that configuration was part of the default image. You need to check that the deployed configuration match your own corporate security requirements.