Security at Orbytal
Your revenue plan is one of the most sensitive documents in your company. Quotas, territories, pipeline, compensation assumptions: we treat it that way.
Independently examined
Orbytal has completed a SOC 2® Type 1 examination conducted by an independent CPA firm, covering the design of our controls relevant to security, confidentiality, and availability under the AICPA Trust Services Criteria.
We share the full report under NDA with customers and active evaluations, through your Orbytal contact.
How we protect your data
Encryption
Customer data is encrypted in transit and at rest, with encryption keys managed through AWS Key Management Service.
Access
Production access is role-based and least-privilege, with organization-level multi-factor authentication enforced. Access for departing personnel is removed within one business day.
Connected systems
Orbytal connects to your CRM and the other systems it monitors through scoped, revocable credentials, reading only the objects the platform needs and writing only what you publish back: territory and account assignments you approve.
Testing and monitoring
Regular vulnerability scans across application and infrastructure, intrusion detection at the system boundary, and an annual penetration test.
Backups and continuity
Customer data is backed up on an encrypted, monitored schedule, and the platform carries a 99.9% availability commitment in our customer agreements.
People
Background checks at hiring, confidentiality agreements, and security training are required for everyone with system access.
Infrastructure
Orbytal runs on Amazon Web Services in the United States. Physical and environmental security of the data centers is managed by AWS, whose attestation reports we review annually.
Your data is yours
We do not sell customer data, and confidential information is used only for the purposes stated in our agreements with you. Data retention and disposal follow documented policies, and customer data is deleted at offboarding.
Questions or disclosures
Security questions, vendor questionnaires, and vulnerability reports: security@orbytal.ai