Trust
How we handle your data. We believe trust is earned through transparency, not marketing. Here is exactly how dME protects your information.
Three pillars that define our approach to handling your information.
dME has completed an independent SOC 2 Type II audit, verifying that our systems and processes meet rigorous standards for handling data. This is not a self-assessment or a checkbox - it is a thorough, third-party evaluation of how we build, operate, and maintain our infrastructure. We undergo this audit annually to ensure we continue to meet these standards as we grow.
Your data stays yours. We do not mine browser data. We do not build advertising profiles. We do not sell or share your information with third parties. The data dME collects is the minimum needed to provide the features you use - app visibility, session controls, and admin reporting. You can see exactly what we collect in our documentation, and you can export or delete your data at any time.
Privacy is not a feature we added later - it is how we designed the product from the start. We follow the principle of minimal data collection: if we do not need a piece of data to deliver value to you, we do not collect it. We do not track personal browsing. We do not sell data. We do not use your data to train models. Your team's browser activity is your business, not ours.
Compliance
dME meets the compliance requirements that matter most to IT teams and procurement.
Independently audited controls for data handling, availability, and confidentiality. Our report is available to customers and prospects under NDA.
dME supports the requirements for organizations that handle protected health information. We sign Business Associate Agreements and maintain the technical safeguards required for HIPAA compliance.
We comply fully with the General Data Protection Regulation. Data processing agreements are available for all customers. EU data residency options are available. Your team members can exercise their data rights at any time.