Regulatory Compliance

Hevo Data Inc. is committed to ensuring the privacy and confidentiality of all the user data processed by our systems and applications.


SOC2 Compliance

Hevo applications securely manage your data to protect the interests of your organization and the privacy of your clients. Every solution designed at Hevo manages customer data based on the five SOC “trust services criteria” — security, availability, processing integrity, confidentiality, and privacy. Read about System and Organization Controls (SOC) Suite of Services .


HIPAA Compliance

Hevo implements physical, network, and process security measures to ensure the security and confidentiality of customer data, as outlined in the Health Insurance Portability and Accountability Act (HIPAA).


GDPR Compliance

Hevo processes your personal information according to the GDPR compliance and follows its seven key principles:

  1. Lawfulness, fairness, and transparency

  2. Purpose limitation

  3. Data minimization

  4. Accuracy

  5. Storage limitation

  6. Integrity and confidentiality (security)

  7. Accountability

Read Complete Guide to GDPR Compliance.


CCPA Compliance

Hevo applications securely handle your personal information according to the CCPA compliance. Under this compliance, you have the following rights:

  • The right to know about the personal information Hevo collects from you, and how it is used and shared.

  • The right to delete personal information collected from you.

  • The right to opt out of the sale of your personal information.

  • The right to non-discrimination for exercising your CCPA rights.


See Also


Revision History

Refer to the following table for the list of key updates made to this page:

Date Release Description of Change
Apr-28-2022 NA Added sections, GDPR Compliance and CCPA Compliance.
Last updated on 28 Apr 2022