Compliance

ExecVision meets GDPR compliance requirements through features such as retention policies, data subject access requests, and individual consent mechanisms. We are compliant with GDPR as a Processor. As the source of the data, customers are deemed to be Controllers.

ExecVision is SOC2 Type II compliant. This third-party audit report details our system’s security, availability, privacy and confidentiality.

ExecVision is pen tested at least annually to search for vulnerabilities.

Hosting

ExecVision is hosted on Amazon Web Services (AWS) and utilizes their US-based servers. Amazon provides an extensive list of compliance and regulatory assurances, including SOC 3, and ISO 27001. See Amazon's compliance and security documents for more detailed information.

All of ExecVision’s servers are located within ExecVision’s own virtual private cloud, and do not allow external connections from untrusted sources.

Privacy & Security Features

» Customizable Retention Policies

ExecVision customers can set policies to remove data on a custom timeline.

» SAML-Based SSO

ExecVision can work with your SAML-compatible identity provider to provide seamless login to your account.

» IP Whitelisting

ExecVision can be configured to prevent users outside of your office from accessing the platform.

» Role-Based Permissions

ExecVision admins can control which individual users, teams, and departments have access to certain features and data within the platform.

» Digit Suppression

ExecVision can be configured to suppress a configurable number of sequential or near-sequential digits, such as credit card numbers, social security numbers, etc.

» Encryption

All data within ExecVision is encrypted at rest. ExecVision also offers an opt-in high strength application-level encryption system. This limits access to your data to only authenticated users of the account.

For more information about our security protocols, please contact us at support@execvision.io.