Security and compliance documentation has moved to the main site
For our SOC 2 Type 2 controls, HIPAA + BAA availability, GDPR + DPA compliance, data handling policies, infrastructure architecture, encryption practices, access controls, incident response process, and responsible disclosure program, see:
The security page covers:
- Compliance certifications (SOC 2 Type 2, HIPAA, GDPR, SOC 3)
- Data handling and retention — what's persisted, what isn't
- Architecture and infrastructure (VPC, perimeter protection, cloud providers)
- Authentication, SSO, and role-based access control
- Encryption at rest, in transit, and for credentials
- Testing and audit cadence
- Incident response and breach notification
The SOC 3 report is downloadable directly from the page.
The SOC 2 Type 2 report is available under NDA — request from security@etlworks.com
For security questionnaires or vendor risk assessments, our Security & Compliance team completes them free of charge. Email security@etlworks.com