Trust & Security
Clerks is built as critical infrastructure, with enterprise-grade security and compliance designed in from day one.
We treat data protection, system integrity, and operational trust as foundational — not features to be added later.
Compliance
SOC 2
HIPAA
GDPR
Our Security Philosophy
Clerks is built as critical infrastructure. Security, privacy, and compliance are designed as foundational systems, not add-ons, so customers don't have to think about them.
Access Control & Authentication
Production systems are protected by strict access controls, unique credentials, encrypted connections, and mandatory multi-factor authentication.
Infrastructure & Network Security
Network firewalls, intrusion detection, and continuous infrastructure monitoring protect systems from unauthorized access and abnormal activity.
Monitoring, Logging & Detection
Centralized logging, alerting, and monitoring provide continuous visibility into system activity and security events.
Device & Endpoint Security
Company-managed devices are secured using centralized device management and anti-malware protections.
Data Protection & Encryption
Sensitive customer data is encrypted at rest and protected through strict access controls.
Governance & Oversight
Security and privacy risks are reviewed regularly through formal governance, board oversight, documented policies, and recurring control assessments.
Customer data is isolated by organization and never shared across accounts.
Subprocessors
Amazon Web Services
Cloud infrastructure
Vercel
Application hosting
GitHub
Version control
Google Workspace
Identity & productivity
Vanta
Security monitoring
Questions about security?
Contact our security team to learn more about our security practices and compliance certifications.