Security Model

Certifications and Penetration Testing

DataSiv is Soc 2 Type I certified and penetration tested on a regular basis. A detailed Soc 2 Type I report and a copy of the authenticated penetration test can be provided upon request after signing an NDA. Please contact [email protected] for access.

Where is your platform deployed?

Our servers are located in Google Cloud's US data centers that are SOC 1, SOC 2 and ISO 27001 certified. These servers support two factor authentication, detailed audit logs, and round the clock monitoring.

Network Transport and Storage

We only store authorization credentials for integration you provide. Data passes through our servers in transit to execute queries, but no customer data from executed data queries is stored in our systems. This is the standard access pattern with which hosted analytics providers use data.

Encryption and Access Control

All application credentials are encrypted at rest and at transit with bank-grade AES-256 encryption.

Data is isolated on both the application and organizational level, with multiple permission checks on both the application, user, and organization level prior to accessing the resource.

Employees regularly undergo security training sessions and detailed audit logs of all data access actions are stored in our system.

What security audit trails do you provide?

We provide audit logs and traces on every query run in our system, every application created, and every application updated on the user level.

We offer behind firewall/VPN connectors in our enterprise offering. Please contact [email protected] for more information.

I have a question not answered here.

Please message us at [email protected].