Security & Trust at Astiva

Astiva handles brand intelligence data for marketing and brand teams. This page documents the controls, certifications, and data-handling practices currently in force.

Encryption

• TLS 1.2 and 1.3 for all data in transit
• Fernet symmetric encryption for sensitive fields at rest
• JWT access + refresh token model with short-lived access tokens

Compliance

• SOC 2 Type II — controls implemented; external audit in progress
• GDPR-ready — data processing agreements available on request
• 99.9% uptime — production SLO; alerts via Slack, Email, Webhooks

Responsible disclosure

Security researchers — email [email protected] with findings. We triage inside 2 business days.

Privacy policy | Terms of service | Contact

← Back to Astiva AI