Enterprise-Grade Security

Your data security is our top priority

We protect your business data with industry-leading encryption, strict access controls, and compliance with global security standards.

SOC 2 Type II
GDPR Compliant
PCI DSS Level 1
99.9% Uptime SLA

How We Protect You

Multi-layered security architecture

Encryption Everywhere

AES-256 encryption at rest and TLS 1.3 for all data in transit. Your data is encrypted end-to-end — in the database, in backups, and during every API call.

Access Control

Role-based access with granular permissions. Every workspace is fully isolated with multi-tenant architecture. SSO and 2FA available on Business+ plans.

Secure Infrastructure

Hosted on AWS with SOC 2 certified data centers. Automated patching, network firewalls, DDoS protection, and real-time intrusion detection.

GDPR & Data Privacy

Full GDPR compliance with data processing agreements, right to erasure, data portability, and transparent privacy practices. Your data is never sold.

Payment Security

All payments processed through Stripe with PCI DSS Level 1 compliance. We never store full card numbers — Stripe handles all sensitive payment data.

24/7 Monitoring

Continuous monitoring with automated alerts for anomalies. Comprehensive audit logs track every access and change across your workspace.

Your Data, Your Control

Complete ownership and portability

You own your data — always. We provide full transparency into how it's stored, processed, and protected. Export everything at any time.

Full Data Export

Export all your contacts, deals, tasks, emails, and files in CSV or JSON format at any time from your account settings.

30-Day Data Retention

After account closure, your data is retained for 30 days for recovery, then permanently deleted. Backups are purged within 90 days.

No Data Selling

Your business data is never sold, shared with third parties for marketing, or used to train general-purpose AI models.

Workspace Isolation

Each workspace is fully isolated at the database level. One tenant's data can never be accessed by another — even in error.

Security at a Glance

Encryption at Rest AES-256
Encryption in Transit TLS 1.3
Payment Processing PCI DSS L1
Infrastructure AWS SOC 2
Data Privacy GDPR
Uptime SLA 99.9%
Backup Encryption Encrypted
AI Security

Responsible AI practices

Our AI features are designed with privacy and security at their core.

Isolated Processing

AI processes your data on our secure infrastructure. Outputs are generated specifically for your workspace and never shared.

No Model Training

Your data is never used to train general-purpose AI models. It only powers features within your own workspace.

Human Oversight

AI suggestions are always clearly marked. You review and approve every AI-generated output before it's sent or applied.

Have security questions?

Our team is happy to discuss our security practices, provide documentation, or answer any compliance questions.

Contact Security Team Read Privacy Policy →