Your data is safe with us

We are actively pursuing SOC 2 Type II certification. Our security controls are designed to meet the Trust Services Criteria for security, availability, and confidentiality. We expect to complete the audit by Q3 2026.

All data is encrypted at rest using AES-256 and in transit using TLS 1.2 or higher. Database backups are encrypted with separate key management. Encryption keys are rotated regularly and managed through a dedicated key management service.

Jungwell is fully compliant with the General Data Protection Regulation. We offer data processing agreements, support data subject access requests, and provide tools for data export and deletion. Our privacy practices meet the requirements of EU data protection law.

All customer data is stored and processed in the United States. Our primary infrastructure runs on SOC 2-certified cloud providers with data centers located in the US. If you have specific data residency requirements, contact our sales team.

We enforce role-based access controls, require multi-factor authentication for all internal systems, and follow the principle of least privilege. All access to production systems is logged and reviewed regularly.

We welcome responsible disclosure of security vulnerabilities. If you discover a potential security issue, please report it to us so we can address it promptly. We are committed to working with the security community to keep our platform safe.