We take data security very seriously

Our ISO 27001 certification and SOC 2 Type 2 report verify that Adverity has implemented robust security systems to protect all information and data assets across our products.

SOC 2 type II

Being a SOC 2 Type 2 audited company, Adverity ensures advanced data security by applying internal controls and demonstrating established security processes. Adverity is audited on a yearly basis.

ISO 27001

By adhering to the highest standards for Information Security Management Systems (ISMS), we guarantee that we are handling our customers’ data with the utmost care and attention, making sure our clients can focus on analyzing, rather than worrying about protecting their data. Adverity is audited by TÜV on a yearly basis.

GDPR and UK GDPR

Adverity collects and processes personal information from individuals both within and outside the European Union (EU) in full compliance with GDPR and UK GDPR requirements. We implement robust data protection measures to safeguard personal data and respect the privacy rights of all data subjects under these regulations.

California Consumer Privacy Act (CCPA)

Adverity honors the privacy rights of California residents as outlined in the CCPA. We maintain transparency about the personal information we collect, provide options to access or delete data, and ensure our business practices align with California's rigorous consumer privacy standards.

Digital Operational Resilience Act (DORA)

Adverity provides comprehensive support to our customers in achieving and maintaining their DORA compliance requirements. Our platform is designed with resilience principles that help financial services organizations meet their regulatory obligations while maintaining operational excellence and data security.

EU E-Privacy Directive

Our operations adhere to the EU E-Privacy Directive standards governing electronic communications and data protection. Adverity implements appropriate measures for cookie management, communication security, and data privacy that align with these important European privacy requirements.

1

Secure data integration

Your data is fetched through fully protected API connections using SSL/TLS protocols to guarantee integrity and security of the data imported into our platform. All processed data assets are encrypted at rest, so no unauthorized access is possible during the data transfers

2

Reliable and safe data storage

Adverity stores client data in secure facilities located in the European Union and United States, providing flexibility while maintaining compliance with regional data sovereignty requirements.

This flexible, reliable, and secure cloud infrastructure allows us to maintain service availability levels above 99.9% and ensures a high level of information security

3

Complete access control

Access to our platform and data is fully protected with user access control and well-defined access rights. Permissions are set on user group or individual level and always follow our least privilege principle. Additional techniques such as 2-factor authentication add an important layer of security, while SSO simplifies daily use of our customers.

4

Full data privacy

The robust privacy protection requirements of the General Data Protection Regulation (GDPR) of the European Union (EU) and the European Economic Area (EEA) are in line with the values of Adverity.
Adverity is fully compliant with various data privacy legislation, such as the EU's GDPR. Our applications that handle data integration, processing, and storage are fully aligned with the best practices in protecting customer data privacy.

5

Vetted partner network

Adverity's suborganizations meet stringent minimum security requirements for data protection and encryption. We carefully evaluate all partners to ensure they uphold the same rigorous standards we maintain, creating a secure ecosystem for all client data throughout our service network.

6

Continuous security education

Our team undergoes comprehensive annual security training to stay current with the latest developments in the cybersecurity landscape. This ongoing education equips every Adverity employee with the knowledge and vigilance needed to safeguard your valuable data.

7

Secure data lifecycle management

With controlled and secure processes in place, we ensure proper data deletion following the latest legal requirements for Deletion and Retention Periods. Adverity's comprehensive data lifecycle management guarantees that your information is handled appropriately from creation through disposal.

Looking to report a security concern?

Please fill out this form or send us an email via cybersecurity@adverity.com

Strengthening security together: Our Bug Bounty Program

We are committed to maintaining the highest standards of security for our users and systems. As part of this commitment, we participate in HackerOne's Bug Bounty Program, collaborating with security researchers worldwide to identify and resolve potential vulnerabilities. Through this program, we invite qualified security researchers to responsibly disclose security issues and receive recognition and rewards for their contributions.

If you find a vulnerability in our services, please report it to us by clicking the button below. If the report is found to be valid and helps us improve our overall security, you will be eligible for a reward in accordance with our bounty structure.

Rigorous security validation

Adverity undergoes comprehensive annual penetration testing—authorized simulated attacks conducted by security experts to identify and address potential vulnerabilities. These intensive assessments ensure our systems maintain the highest level of protection against emerging threats, providing you with confidence in our security posture.

Proactive vulnerabilty detection

Our security infrastructure incorporates advanced vulnerability scanning tools that continuously monitor and identify potential weaknesses across our network-based assets. These specialized tools detect vulnerabilities stemming from misconfigurations or flawed programming in firewalls, routers, web servers, and application servers—allowing us to address potential security gaps before they can be exploited.

Your data security: Protected at every level

Your data security is our highest priority at Adverity. Our comprehensive security framework ensures that your data remains protected while still allowing for the powerful analytics capabilities that drive your business forward. For complete details on our security commitments and data handling practices, please review our Master Subscription Agreement (MSA) and Data Processing Agreement (DPA), which outline our legal obligations and safeguards for your peace of mind.