Security is embedded in Whatfix’s DNA
At Whatfix, we make security a top priority—from product ideation to creation. We protect your security and privacy by strictly following industry best practices and complying with regulations from GDPR, SCORM, SOC2, HIPAA, and CCPA.
How we’re looking out for you
Access to sensitive data is restricted to authorized individuals and requires Multi-Factor Authentication.
Every application goes through elaborate security reviews and tests against OWASP standards and other industry best practices.
We protect sensitive information transmitted online by converting information or data into code.
All of our employees and contractors go through an onboarding process that includes mandatory security training, non-disclosure agreements, and background checks Personnel Security.
Third-Party Security Management
Before engaging with any third parties, they must sign Confidentiality agreements and go through periodic audits and assessments to validate their compliance.
Compliance and Security Certifications
Whatfix’s products and services have achieved and maintained security certifications including SOC 2 Type II, ISO/IEC 27001, CSA Star Level 2, and HIPAA.
Learn more about our security practices here