Security

ProcessScout is built from the ground up with security and privacy as first-class requirements. Our architecture (detailed on the nerds page) includes cryptographic provenance, redaction-aware processing, and privacy-preserving techniques for cross-organizational work.

Key controls

• All sensitive data is encrypted at rest and in transit.
• Chrome extension operates with minimal permissions and user-controlled capture.
• Evidence bundles are segregated from the primary cryptographic event chain.
• Regular security reviews and penetration testing.
• Role-based access and audit logging for all customer data.

For our current SOC 2 status, penetration test summary, or detailed security questionnaire, please email [email protected].