Avaamo Trust Center

Start your security review
View & download sensitive information
ControlK

Overview

At Avaamo, we understand that trust is the foundation of every successful partnership.

Welcome to Avaamo's Trust Center - A destination to learn how we protect data, maintain compliance, and ensure the reliability of our platform. It showcases the security controls, privacy safeguards, and governance practices we follow across every layer of our organization, from cloud infrastructure and network protection, to employee training, risk management, and business continuity planning.

Our commitment is simple:
Security by design : Industry-leading technologies and processes to secure data and systems.
Privacy by default : Transparent data handling aligned with regulations like HIPAA, HITRUST, ISO and SOC 2 Type II.
Resilience and reliability : Redundancy, disaster recovery, and high availability built into our platform.
Continuous compliance : Regular audits, certifications, and assessments to validate our practices.

With the Trust Center, we aim to give our customers and partners full transparency into how we safeguard their data, so you can focus on what matters most: building meaningful conversations with confidence.

Compliance

ISO/IEC 27001:2022 Logo
ISO/IEC 27001:2022
ISO/IEC 27001:2013 Logo
ISO/IEC 27001:2013
SOC 2 Type 2 Logo
SOC 2 Type 2
SOC 3 Logo
SOC 3
HIPAA Logo
HIPAA
HITRUST Logo
HITRUST
NIST CSF Logo
NIST CSF
NIST 800-171 Rev. 2 Logo
NIST 800-171 Rev. 2
CCPA Logo
CCPA
GDPR Logo
GDPR
EU-US DPF Logo
EU-US DPF
PCI DSS v4.0.1 Logo
PCI DSS v4.0.1
HITECH Logo
HITECH
FedRAMP 20x Logo
FedRAMP 20x

Documents

Featured Documents

POLICIESInformation Security Policies
COMPLIANCEISO/IEC 27001:2022
COMPLIANCESOC 2 Type 2

AI

AI Overview
Age Bias Control
Ethnicity Bias Control
View more

App Security

Software Development Lifecycle
Web Application Firewall

Data Security

Encryption-at-rest
Encryption-in-transit
Physical Security

Data Privacy

Cookies
Data Breach Notifications
Data Into System
View more

Corporate Security

Employee Handbook
Employee Training
HR Security
View more

Risk Profile

Data Access LevelInternal
HostingMajor Cloud Provider

Risk Management

Risk Assessments
Vendor Risk Management

Product Security

Data Security
Multi-Factor Authentication
SSO Support

Policies

Information Security Policies

Reports

Vulnerability & Penetration Report
Security Overview
SOC 2 Report

Legal

SubprocessorsAmazon Web Services (AWS)-company-logoGoogle-company-logoTwilio-company-logoMicrosoft Azure-company-logo
Cyber Insurance
Privacy Policy
View more

Access Control

Access Log Management
Data Access
Internal Single-Sign-On (SSO)
View more

Infrastructure

Amazon Web Services
Anti-DDoS
BC/DR
View more

Endpoint Security

Endpoint Detection & Response
Mobile Device Management
Threat Detection

Network Security

Distributed Denial of Service Protection (Anti-DDoS)
IDS/IPS
Web Application Firewall

Security Grades

BitSight
Avaamo Inc

Incident Response

Incident Response Plan

Asset Management

Asset Classification
Asset Inventories (Hardware/Software)
IT Asset Management (ITAM) Program

BC/DR

Business Continuity Plan (BCP)
Contingency Plan Testing/Lessons Learned
Data Backup/Backup Protection
View more

Training

Security Awareness Training
Role-Based Training
Training Program

Change Management

Change Management Program
Change Advisory Board (CAB)
Change Restrictions
View more

Physical & Environment

Access Monitoring
Alarms & Surveillance
Fire Protection
View more

Subprocessors

Built onSafeBase by Drata Logo