Security overview — printable version

Use your browser’s print dialog to save as PDF.

Strategos Analytics — Confidential

Security Overview

Revenue Navigator · Last updated: April 2026

Revenue Navigator processes your organisation’s CRM and pipeline data to surface actionable revenue intelligence. This document summarises our current security posture, compliance roadmap, and data handling commitments for use in enterprise security reviews.

Core security controls

Encryption in transit

TLS 1.2+ on all connections

Encryption at rest

AES-256 for all customer data

Access controls

Least-privilege + MFA required

Data isolation

Per-customer logical isolation

Incident response

Documented process; 72-hour breach notification

Secure development

Dependency scanning + automated security checks in CI/CD

Data retention

Deleted within 30 days of contract termination

Sub-processors

EU-based infrastructure; list available on request

Data residency

All customer personal data is processed and stored within the European Union.
No customer data is transferred to third countries without appropriate safeguards (Standard Contractual Clauses under Commission Decision 2021/914).
Infrastructure is hosted on EU-based cloud providers. Sub-processor list available on request.
Strategos Analytics acts as a data processor under GDPR Article 28. A Data Processing Agreement (DPA) is available at strategos-analytics.com/dpa.

Compliance roadmap

We do not claim certifications we do not hold. Below is our planned certification trajectory.

MilestoneTargetStatus

SOC 2 Type IQ4 2026In preparation

SOC 2 Type IIH2 2027Follows Type I audit

ISO 27001Under considerationPost-SOC 2

Our programme is designed around SOC 2 Trust Service Criteria from the outset. Formal audit engagement is planned for Q3 2026.

Incident and vulnerability management

Security incidents affecting customer data are notified within 72 hours of detection, consistent with GDPR Article 33 obligations.
Responsible disclosure reports are acknowledged within 2 business days.
Security vulnerabilities in dependencies are tracked via automated scanning in our CI/CD pipeline.

Security review contact

For enterprise security questionnaires, DPA execution, or audit requests, contact our security team:

security@strategos-analytics.com

strategos-analytics.com/security · strategos-analytics.com/dpa

This document reflects the security posture of Strategos Analytics as of April 2026. It is intended for use in vendor security assessments and does not constitute a legal warranty. Detailed financials and audit artefacts are available under NDA to qualified enterprise prospects.