At Cytovale, security is not an afterthought — it is built into the foundation of everything we do. Our platform is designed for regulated clinical environments where the integrity, confidentiality, and availability of data are non-negotiable.
We maintain a comprehensive security program aligned with industry-recognized best practices, including:
- Access Management — Unique account authentication and restricted encryption key access
- Data Protection — Encryption enforced across our platform
- Vulnerability Management — Regular penetration testing and control self-assessments
- Organizational Controls — Employee background checks, Code of Conduct acknowledgment, and asset disposal procedures
- Business Continuity — Tested Continuity and Disaster Recovery plans
- Data & Privacy — Defined retention policies and customer data deletion upon offboarding
SOC 2 Type II Certified
Cytovale has achieved SOC 2 Type II attestation, independently verifying that our security controls meet the AICPA’s rigorous Trust Services Criteria.
Request access to our full audit report here.
Questions about our security posture? Contact us at infosec@cytovale.com.