Security & Compliance
Dealyv is built to meet global data‑protection standards and enterprise expectations.
We comply with ISO/IEC 27001, GDPR, CCPA and SOC 2 Type II. Every client dataset is encrypted, monitored, and processed with traceability.
Encryption by Default
TLS 1.3 in transit; AES‑256 at rest. Keys are rotated regularly and stored using hardened KMS.
Data Residency
Primary hosting in EU regions with jurisdiction‑compliant storage options. Regional backups with immutable retention policies.
Access Controls
SSO + MFA required for internal access. Principle of least privilege enforced with time‑boxed approvals and auditable actions.
Incident Response
24/7 on‑call with defined detection, containment, and post‑mortem process. Customer notifications follow applicable laws.
Data Processing Agreement
Standard DPA available on request, including sub‑processor list and SCCs where applicable.
Request SOC 2 Type II Report
We can share our latest auditor letter and report under NDA.