Security at EiWare.

What we do to protect your business data — and what we don’t claim.

EiWare takes the security of your business data seriously. Below is a plain-language overview of our practices. We are not yet SOC 2 certified or HIPAA compliant — claims we don’t make are as important as the ones we do.

Encryption

Data is encrypted at rest (AES-256) and in transit (TLS 1.2+). All communication between your browser and EiWare infrastructure uses modern TLS.

Access Control

Role-based access controls for the EiWare team. Least-privilege principles applied throughout. Audit logging on sensitive operations.

Data Isolation

Per-tenant logical isolation in EiWare cloud. Your business data is not commingled with other tenants.

Backup and Recovery

Automated backups with defined recovery objectives. Business continuity procedures tested regularly.

Vulnerability Management

Regular third-party security testing and responsible disclosure process. Contact us at [email protected] to report a security concern.

What we don’t claim

We are not currently SOC 2 certified, HIPAA compliant, or PCI-DSS Level 1 certified. If your business requires any of these certifications today, we’ll tell you so during discovery rather than after onboarding. For clients with sovereignty requirements, EiWare offers special-deployment scoping — contact sales to discuss.

For security inquiries: [email protected] with subject “Security Inquiry.”

Book a Discovery Call →