We enable thousands of organizations to better understand their customers. Keeping your data private, secure, and compliant is fundamental to this effort.
We’re committed to ensuring the security, reliability, privacy, and compliance of our services.
We protect data with encryption in-transit and at-rest and provide administrative controls to enforce access controls.
We take regular data backups and test recovery, run penetration testing, encrypt all data at rest and in transit, conduct static code analysis and third party vulnerability scanning, sanitize our logs, secure individual customers at the database level, and many other cloud security techniques.
We’re not in the business of selling your data (anonymized or otherwise). You own your data and we will never sell it to third parties. We also won’t look at your data unless you give us permission for a support case.
Dive deep into our comprehensive security policies and documentation.
We have received our SOC 2 Type II report demonstrating that Dovetail has the appropriate controls in place to mitigate risks related to security, availability, and confidentiality.More on SOC 2
Dovetail has made information security and data privacy foundational principles of everything we do, and we recognize the importance of adhering to regulations to advance information security and data privacy for citizens of the EU.Our commmitment
Features and processes in our product and day-to-day operations.
Single sign-on support via OpenID Connect, available in leading identity providers.
All data is encrypted in transit via TLS 1.2 and at rest with AES-256 encryption.
Control who can manage, view, and edit projects with granular project permissions.
Leverage domain-restricted sign up to provision user accounts as they need access.
Ability to provide and revoke access to roles, and manage active user sessions.
Restrict user provisioning to verified email addresses at your approved domains.
Established mitigation of risks related to security, availability, and confidentiality.
Dovetail adheres to the EU’s GDPR legislation on storage and deletion of user data.
A few of the security and privacy features we have planned.
See an audit trail of all user actions in your workspace.
Anonymize data as it’s uploaded to your workspace.
More granular user permissions.