As a software developer and technology provider, SmartVault takes security seriously. The SmartVault security strategy is well-defined and implemented enterprise wide. 

SmartVault’s Information Security Program is designed to protect the confidentiality, integrity and availability of both SmartVault and customer data, such as:

• The mission and business-critical systems that customers rely upon for cloud services, technical support and other services;
• Personal and other sensitive information that SmartVault processes during its business, including customer, partner, supplier and employee data residing in SmartVault’s internal systems and third-party platforms; and
• SmartVault source code and other sensitive data against theft and malicious alteration.

SmartVault’s information security policies and practices govern the management of security for SmartVault’s operations, and the services provided to its customers, and which apply to all SmartVault personnel, including employees, and contractors. These policies are aligned with the ISO/IEC 27001:2022 standard and guide security within SmartVault.

SmartVault has implemented a wide variety of preventive, detective, and corrective security controls with the objective of protecting information assets. SmartVault actively aligns to a variety of industry and regulatory frameworks, and best practices including the International Organisation for Standardization (ISO), System and Organisation Controls (SOC 2), National Institute of Standards and Technology (NIST), CIS v8 controls, Payment Card Industry Data Security Standard (PCI DSS), OWASP and other industry sources.

Compliance Requests

If you require additional information please contact compliance@smartvault.com 

For SEC or HIPAA requests please use the following links: 

Letter of Attestation: https://app.docdown.io/trigger/form/ba9a75f9-cb67-4598-8aeb-0d953ac1e565

Business Associate Agreement: https://app.docdown.io/trigger/form/93229272-10af-4d33-8680-d862fc8e7a7f