Encryption in transit and at rest
TLS 1.3 in transit, AES-256 at rest. Customer-managed keys on Enterprise (AWS KMS).
loading workspace…
SOC 2 Type II, ISO 27001, GDPR, DPF. Workspace isolation by default. Conflicts-wall segregation when ethical walls between competing firms apply.
Annually audited. Latest report available under NDA.
Information Security Management System certified.
EU SCCs + UK IDTA. DPO on staff.
EU-US Data Privacy Framework certified.
BAA available for in-house healthcare counsel.
UK government scheme · audited annually.
TLS 1.3 in transit, AES-256 at rest. Customer-managed keys on Enterprise (AWS KMS).
SSO via Okta and Azure AD. SCIM provisioning. IP allow-list. Hardware-key second factor for admins.
Strict workspace boundaries. Conflicts-wall workspaces run on segregated infrastructure (Counsel + Enterprise).
US, UK, and EU regions on Counsel and Enterprise. Single-tenant deployment on Enterprise.
Every admin action, draft publish, and rulebook lint is logged immutably. Exportable to SIEM.
Peer-reviewed pull requests, staged rollouts, automatic rollback on canary failure.
24/7 on-call. Customer notification within 24 hours of any confirmed personal-data breach.
Quarterly black-box penetration tests by NCC Group. Annual red-team engagement on Enterprise.
Report security issues to security@cognoverge.com. We acknowledge within 24 hours, fix critical issues within 7 days, and recognize researchers in our hall of fame.
# security.txt Contact: mailto:security@cognoverge.com Encryption: https://cognoverge.com/.well-known/pgp.txt Expires: 2027-05-20T00:00:00.000Z Policy: https://cognoverge.com/security#disclosure