Our Commitment to Compliance with Confidence

Encamp is dedicated to keeping the most important data confidential and secure. It is the reason we build our web-based platforms on the most reliable, scalable, and secure cloud computing technologies while employing policies and procedures which mitigate risk.

SOC2 is an independent third-party examination report that demonstrates key compliance controls and objectives. Encamp is Service Organization Controls (SOC) 2 Type 2 certified for Security. Our application follows the best practices outlined by the Open Web Application Security Project (OWASP), which includes encrypting all data at rest and in transit, and is built on systems hosted by Amazon Web Services (AWS), the best-in-class cloud infrastructure provider.

We partner with Drata to achieve continuous SOC 2 compliance through automated monitoring of our company’s policies, procedures, and IT infrastructure. If there are questions regarding data privacy, please see our Privacy Policy.

Our applications are built around the security best practice “Principle of Least Privilege” which means that each user and each part of our software stack is authorized to do only what it needs to in order to do the job. If a user’s computer is infected with a virus or other malware, it has no way of crossing over to the Encamp platform, because our code is fundamentally only accessible through limited channels which validate their inputs.


Do you have any questions about Encamp’s Security Statement? Send inquiries and incident reports to