Provakil's
State-Of-The-Art Security

Dedicated cybersecurity team

Our dedicated security team works round the clock to respond to security incidents, and solving them is the top priority for our cybersecurity team. We understand the sensitivity of the data running on our platform and ensure to secure it.

Cutting edge technology in cybersecurity

We continuously monitor for potential vulnerabilities. With continuous review and update of our code and systems configuration, we ensure your data is safe by adhering to industry best practices.

Operating per GDPR legislation

Provakil is GDPR-compliant, meeting our requirements as both a data controller and data processor.

Secure cloud services

Cutting edge technology in cybersecurity

We continuously monitor for potential vulnerabilities. Regular review and update of our code and systems configuration ensure your data is protected by adhering to the industry best practices.

In-transit and at-rest encryption

Provakil uses 2048-bit key encryption for encrypting the communication between clients and Provakil servers. We regularly test our SSL/TLS configuration against the best practices using the SSL Server Test tool and ensure that our rating is greater than 'A.'

Built with data residency and on-premise deployment in mind

Provakil offers hosting options in different geographies around the world to address any data residency requirements. Provakil's hosting facilities are audited annually for security certifications (SOC 2 and ISO27001) to ensure they employ advanced physical security measures. Provakil also manages on-premise deployment on client servers.

Automatic backups and redundant servers

All the data from the DB server and other internal services are backed up daily. Apart from these backups, we also maintain redundant servers in replicas for critical services like databases.

Virtual Private Network for inter-server communication

All servers of Provakil are placed in a virtual private network to provide logical isolation from the internet at large. We use state-of-the-art, peer-reviewed technologies to achieve this, which protects Provakil's servers from Man-in-the-Middle attacks and other potential transport layer security vulnerabilities.

Role-based permissions

This allows us to give selective access to functionality and data within the product to the different users of the team.

Login safeguards

Provakil has an SSO with Google, Okta, Microsoft Active Directory, and Azure services to be able to leverage your organization's centralized identity provider into Provakil. Provakil will automatically lock your account for a while after too many failed login attempts.

Session/Activity tracking

Provakil logs the IP address of every session for your account and actions taken by your users to help you monitor for suspicious activity.

Password policies

We use the battle-tested, industry-standard bcrypt algorithm to securely hash and salt the password before saving it in our database. Provakil also has provisions to consider password policies from client-specific regulations.