Sengard
Loading...

Trust Center

Your central hub for security, privacy, and compliance information.

Built on Trust

At Sengard, trust is the foundation of everything we do. We understand that you're entrusting us with sensitive data about your organization and employees. That's why we maintain the highest standards of security, privacy, and transparency.

Our Commitment

Four Pillars of Trust

We protect your data across four key dimensions — security, privacy, compliance, and availability.

Security

Enterprise-grade security controls including encryption, access management, continuous monitoring, and regular third-party penetration testing.

  • TLS 1.2+ encryption in transit
  • AES-256 encryption at rest
  • 24/7 security monitoring
  • Annual penetration testing
View Security Statement

Privacy

We are committed to protecting your personal information and providing transparency about how we collect, use, and share data.

  • GDPR compliant
  • Data minimization practices
  • Right to deletion
  • No data selling
View Privacy Policy

Compliance

We maintain compliance with leading security and privacy frameworks, validated through regular independent audits.

  • SOC 2 Type II certified
  • ISO 27001 aligned
  • HIPAA ready (BAA available)
  • Regular compliance audits
View Certifications

Availability

Our platform is built for reliability with redundant infrastructure, automatic failover, and a 99.9% uptime SLA.

  • 99.9% uptime SLA
  • Redundant infrastructure
  • Automatic failover
  • Disaster recovery tested
View Service Status
FAQ

Frequently Asked Questions

Common questions about our security and data handling practices.

Where is my data stored?

Your data is stored on enterprise-grade cloud infrastructure with servers located in regions that comply with your data residency requirements. We offer data residency options for EU, US, and APAC regions.

Who has access to my organization's data?

Access to customer data is strictly limited to authorized personnel on a need-to-know basis. All access is logged and audited. Your organization's administrators control user access within your account.

How do you handle data breaches?

We have a documented incident response plan. In the event of a data breach, we will notify affected customers within 72 hours as required by GDPR and other applicable regulations, along with details of the incident and remediation steps.

Can I export or delete my data?

Yes. You can export your organization's data at any time through the admin portal. Upon subscription termination, data is retained for 90 days before permanent deletion. You can also request immediate deletion by contacting our support team.

Do you use subprocessors?

Yes, we use a limited number of trusted subprocessors for hosting, email delivery, and analytics. A complete list of subprocessors is available upon request, and we notify customers of any changes.

Have More Questions?

Our security team is happy to answer any questions about our practices, certifications, or data handling procedures.

Contact Security Team[email protected]