OAuth is used for all authentication and passwords are never stored at Seva.
All data is encrypted using AES-256 both in transit and at rest.
Seva never stores documents or messages, only short summaries and keywords.
All data and all systems are proactively monitored around the clock.
Seva maintains daily backups and verisioning of user data on an internal system. There, worst case Recover Response Objective is 24 hours.
Seva developed a comprehensive set of security policies covering a broad set of topics. These policies are vetted annually, but are part of our continuous compliance monitoring framework.
In addition to regularly running vulnerability and penetration tests, we strive to always look at ways to improve upon security ourselves and through 3rd parties. We are actively working with 3rd party firms ensure the strictest adherence.
All data that we collect at anytime stays with us. We absolutely do not, and we don't have any plans whatsoever, to share or sell any of your data for any purpose whatsoever.
We operate on multi-tenancy but can provide options to deploy within a private cloud or on-premise. Please email us at support@hiseva.com or click on the chat button to speak to someone about this.
We strive for full transparency on all security matters and are happy to answer questions. Please email us at support@hiseva.com or click on the chat button on the website to speak to someone about this.