Why Insightech
Retail & eCommerce Financial Services Travel & Airlines Not for Profit
Features Pricing Customer Stories
Resources
Blog Documentation Submit a Ticket
Sign in Let's Talk

Security & Compliance

SOC 2 Certified

SOC 2 Type II Certified

Insightech maintains SOC 2 Type II compliance, demonstrating our commitment to the highest standards of security, availability, and confidentiality.

Our Commitment to Security

At Insightech, security is foundational to everything we do. We understand that our customers trust us with sensitive data about their digital experiences, and we take that responsibility seriously.

Our platform is designed with enterprise-grade security from the ground up, featuring:

  • Data Encryption — All data is encrypted in transit (TLS 1.2+) and at rest
  • Access Controls — Role-based access control with multi-factor authentication
  • Data Residency — Choose where your data is stored to meet compliance requirements
  • Built-in PII Masking — Automatic detection and masking of sensitive information
  • Regular Security Audits — Independent third-party penetration testing and vulnerability assessments

SOC 2 Type II Compliance

SOC 2 (Service Organization Control 2) is a rigorous auditing standard developed by the American Institute of CPAs (AICPA). Our SOC 2 Type II certification validates that Insightech has implemented and maintained effective controls for:

  • Security — Protection against unauthorised access
  • Availability — System uptime and performance commitments
  • Confidentiality — Protection of confidential information

Unlike Type I reports that assess controls at a single point in time, our Type II certification demonstrates that these controls have been operating effectively over an extended period.

Prohibited Data Collection

To protect end-users, Insightech prohibits the collection of certain sensitive information through our platform:

  • Financial information (credit card numbers, bank accounts)
  • Government-issued IDs (driver’s licence, passport, tax file numbers)
  • Health and medical information
  • Passwords and authentication credentials
  • Biometric data

Our platform includes built-in tools to help you mask and exclude sensitive data from collection.

Trust Centre

For detailed information about our security practices, compliance certifications, and policies, visit our Trust Centre:

Visit Trust Centre

Questions?

If you have questions about our security practices or need additional documentation for your compliance review, please contact us.