Security & Compliance

Trust Center

Security, privacy, and compliance are foundational to Best Workplace. We implement enterprise-grade controls to protect your organization's data.

View SOC 2 Controls Request Security Documentation

Security Principles

Our security architecture is built on defense-in-depth principles with multiple layers of protection.

Data Encryption

All data encrypted at rest (AES-256) and in transit (TLS 1.3). Database-level encryption via Supabase/PostgreSQL.

Authentication

Secure session management with HTTP-only cookies, bcrypt password hashing, and optional MFA support.

Row-Level Security

PostgreSQL RLS policies enforce tenant isolation at the database layer. Users can only access data within their organization.

Audit Logging

Comprehensive audit trails for authentication events, data access, and administrative actions.

Network Security

Hosted on Vercel's edge network with DDoS protection, WAF, and automatic SSL certificate management.

Access Control

Role-based access control (RBAC) with granular permissions per application and feature.

Compliance Status

We are committed to achieving and maintaining industry-standard compliance certifications.

SOC 2 Type II

In Progress

Independent CPA audit of security, availability, and confidentiality controls

Q3 2026

ISO 27001

Planned

Information Security Management System (ISMS) certification

Q4 2026

GDPR

Compliant

EU General Data Protection Regulation compliance for data privacy

Current

CCPA

Compliant

California Consumer Privacy Act compliance for US data privacy

Current

SOC 2 Trust Service Criteria

Our controls are mapped to the AICPA Trust Service Criteria for SOC 2 Type II readiness.

Security

Access Control

Role-based permissions with organization-scoped data access

Authentication

Secure login with session management and password policies

Encryption

TLS 1.3 in transit, AES-256 at rest

Vulnerability Management

Regular dependency updates and security patches

Incident Response

Documented incident response procedures

Availability

Uptime Monitoring

Real-time monitoring with alerting

Disaster Recovery

Automated backups with point-in-time recovery

Scalability

Auto-scaling infrastructure via Vercel Edge Network

Redundancy

Multi-region deployment with failover

Processing Integrity

Input Validation

Server-side validation on all API endpoints

Error Handling

Graceful error handling with user-friendly messages

Data Quality

Constraints and validation at database level

Confidentiality

Data Classification

Sensitive data identified and protected

Tenant Isolation

Row-Level Security (RLS) enforces organization boundaries

Secure Transmission

All API calls over HTTPS with certificate pinning

Privacy

Consent Management

User consent captured and tracked

Data Minimization

Only necessary data collected and retained

Right to Deletion

Users can request data deletion

Clear privacy policy published and maintained

Infrastructure

Best Workplace is built on enterprise-grade cloud infrastructure with industry-leading security.

Cloud ProviderVercel (AWS infrastructure)

DatabaseSupabase (PostgreSQL 15)

CDNVercel Edge Network (global)

SSL/TLSTLS 1.3 with automatic certificates

DDoS ProtectionVercel Enterprise DDoS mitigation

Data ResidencyUnited States (configurable)

Backup FrequencyDaily automated backups

Retention Period30-day point-in-time recovery

Data Handling

We implement strict controls to ensure your data is handled securely throughout its lifecycle.

Data at Rest

AES-256 encryption
Encrypted backups
Secure key management

Data in Transit

TLS 1.3 encryption
HTTPS enforced
Certificate validation

Data Deletion

Right to deletion
Secure data purge
Backup retention policy

Questions About Our Security?

Our security team is available to discuss your specific requirements, provide documentation, or answer questions about our compliance posture.

Contact Security Team Privacy Policy

Security & Compliance

Trust Center

Security, privacy, and compliance are foundational to Best Workplace. We implement enterprise-grade controls to protect your organization's data.

View SOC 2 Controls Request Security Documentation

Security Principles

Our security architecture is built on defense-in-depth principles with multiple layers of protection.

Data Encryption

All data encrypted at rest (AES-256) and in transit (TLS 1.3). Database-level encryption via Supabase/PostgreSQL.

Authentication

Secure session management with HTTP-only cookies, bcrypt password hashing, and optional MFA support.

Row-Level Security

PostgreSQL RLS policies enforce tenant isolation at the database layer. Users can only access data within their organization.

Audit Logging

Comprehensive audit trails for authentication events, data access, and administrative actions.

Network Security

Hosted on Vercel's edge network with DDoS protection, WAF, and automatic SSL certificate management.

Access Control

Role-based access control (RBAC) with granular permissions per application and feature.

Compliance Status

We are committed to achieving and maintaining industry-standard compliance certifications.

SOC 2 Type II

In Progress

Independent CPA audit of security, availability, and confidentiality controls

Q3 2026

ISO 27001

Planned

Information Security Management System (ISMS) certification

Q4 2026

GDPR

Compliant

EU General Data Protection Regulation compliance for data privacy

Current

CCPA

Compliant

California Consumer Privacy Act compliance for US data privacy

Current

SOC 2 Trust Service Criteria

Our controls are mapped to the AICPA Trust Service Criteria for SOC 2 Type II readiness.

Security

Access Control

Role-based permissions with organization-scoped data access

Authentication

Secure login with session management and password policies

Encryption

TLS 1.3 in transit, AES-256 at rest

Vulnerability Management

Regular dependency updates and security patches

Incident Response

Documented incident response procedures

Availability

Uptime Monitoring

Real-time monitoring with alerting

Disaster Recovery

Automated backups with point-in-time recovery

Scalability

Auto-scaling infrastructure via Vercel Edge Network

Redundancy

Multi-region deployment with failover

Processing Integrity

Input Validation

Server-side validation on all API endpoints

Error Handling

Graceful error handling with user-friendly messages

Data Quality

Constraints and validation at database level

Confidentiality

Data Classification

Sensitive data identified and protected

Tenant Isolation

Row-Level Security (RLS) enforces organization boundaries

Secure Transmission

All API calls over HTTPS with certificate pinning

Privacy

Consent Management

User consent captured and tracked

Data Minimization

Only necessary data collected and retained

Right to Deletion

Users can request data deletion

Clear privacy policy published and maintained

Infrastructure

Best Workplace is built on enterprise-grade cloud infrastructure with industry-leading security.

Cloud ProviderVercel (AWS infrastructure)

DatabaseSupabase (PostgreSQL 15)

CDNVercel Edge Network (global)

SSL/TLSTLS 1.3 with automatic certificates

DDoS ProtectionVercel Enterprise DDoS mitigation

Data ResidencyUnited States (configurable)

Backup FrequencyDaily automated backups

Retention Period30-day point-in-time recovery

Data Handling

We implement strict controls to ensure your data is handled securely throughout its lifecycle.

Data at Rest

AES-256 encryption
Encrypted backups
Secure key management

Data in Transit

TLS 1.3 encryption
HTTPS enforced
Certificate validation

Data Deletion

Right to deletion
Secure data purge
Backup retention policy

Questions About Our Security?

Our security team is available to discuss your specific requirements, provide documentation, or answer questions about our compliance posture.

Contact Security Team Privacy Policy