Skip to main contentSkip to navigation
DealView
FeaturesHow It WorksSolutionsPricingBlog
LoginTry for free
Help Center/Security & Privacy/Data Security Overview
Back to Security & Privacy

Data Security Overview

Learn how DealView protects your contract data with encryption, access controls, and compliance measures.

5 min read
Updated 1/30/2026

DealView is built with security at its core. Here's how we protect your contract data.

Encryption

Data at Rest

All stored data is encrypted using AES-256:

  • Contract files
  • Extracted metadata
  • User information
  • API keys and tokens

Data in Transit

All connections use TLS 1.3:

  • Browser to DealView servers
  • DealView to cloud storage integrations
  • API communications
End-to-End

Your data is encrypted from the moment it leaves your browser until it's stored in our systems.

Access Controls

Authentication

  • Email/password with strong password requirements
  • Multi-factor authentication (MFA) available
  • SSO/SAML integration (Enterprise plans)
  • Session timeout after inactivity

Authorization

  • Role-based access (Admin, Member, Viewer)
  • Folder-level permissions (Professional+)
  • API key scoping
  • Audit logging of all access

Infrastructure Security

Cloud Infrastructure

  • Hosted on SOC 2 Type II compliant providers
  • Data centers in the United States
  • Redundant storage across multiple availability zones
  • Regular security audits and penetration testing

Network Security

  • DDoS protection
  • Web Application Firewall (WAF)
  • Intrusion detection systems
  • Rate limiting to prevent abuse

AI Data Privacy

Your contracts are processed securely:

  • No training on your data - Your contracts are never used to train AI models
  • Enterprise data agreements - We have DPAs with AI providers
  • Ephemeral processing - Data is not retained by AI services after analysis
  • Isolated processing - Each analysis is independent
Privacy First

We chose AI providers with explicit contractual guarantees that your data won't be used for training.

Compliance

Standards & Certifications

  • SOC 2 Type II infrastructure
  • GDPR compliant data handling
  • CCPA compliant privacy controls
  • HIPAA-ready architecture (Enterprise)

Data Residency

  • Primary storage in United States
  • EU data residency available (Enterprise)
  • No data transfer to unauthorized regions

Your Security Controls

Account Security

  • Enable MFA in SettingsSecurity
  • Review active sessions
  • Set password requirements for your organization

API Security

  • Generate scoped API keys
  • Rotate keys regularly
  • Monitor API usage

Audit Logs

View all activity in SettingsAudit Log:

  • User logins and logouts
  • Contract uploads and deletions
  • Permission changes
  • API access

Incident Response

In case of security incidents:

  • 24-hour notification for critical issues
  • Detailed incident reports
  • Remediation steps communicated
  • Post-incident reviews

Reporting Vulnerabilities

Found a security issue? Contact us:

  • Email: security@dealview.io
  • We operate a responsible disclosure program
  • No legal action against good-faith reporters

Regular Security Practices

DealView maintains security through:

  • Regular penetration testing
  • Automated vulnerability scanning
  • Dependency updates and patching
  • Employee security training
  • Annual security audits
Your Responsibility

While we secure the platform, you're responsible for: strong passwords, MFA enrollment, appropriate role assignments, and secure handling of exported data.

Security Resources

Related Articles

SSO Setup (Enterprise)

Configure Single Sign-On with SAML for your organization. Enterprise plan feature.

Understanding Audit Logs

Track user activity and changes in DealView with the audit log system.

Enabling MFA

Set up multi-factor authentication for enhanced account security in DealView.

Was this article helpful?

Need more help? Contact support