Security
Trust is earned through transparency, not badges. Here is exactly how dME protects your information and where we stand on compliance.
Three principles that define our approach to handling your information.
Every layer of dME is built with security in mind. We use end-to-end encryption, role-based access controls, and a zero-trust architecture that requires authentication and policy validation at every step. Our infrastructure runs on hardened cloud environments with continuous monitoring and automated threat detection.
Your data stays yours. We do not mine browser data. We do not build advertising profiles. We do not sell or share your information with third parties. The data dME collects is the minimum needed to provide the features you use - app visibility, session controls, and admin reporting. You can see exactly what we collect in our documentation, and you can export or delete your data at any time.
Privacy is not a feature we added later - it is how we designed the product from the start. If we do not need a piece of data to deliver value to you, we do not collect it. We do not track personal browsing. We do not sell data. We do not use your data to train models. Your team's browser activity is your business, not ours.
Compliance
We are transparent about where we are. Here is what we support today and what we are working toward.
We are actively working toward SOC 2 Type II certification. Our systems and processes are being designed and documented to meet the Trust Services Criteria for security, availability, and confidentiality. Contact us for details on our current security posture.
We are building dME to support organizations that handle protected health information. HIPAA-readiness is on our compliance roadmap. If your organization requires HIPAA compliance, contact us to discuss your specific needs and our timeline.
We follow GDPR principles in how we design and operate our products. Data processing agreements are available for customers who need them. We are committed to supporting data subject rights and providing transparency about how data is processed.
We are happy to walk through our security architecture, data handling practices, and compliance roadmap.
Schedule a Demo