Data security and confidentiality are the top priorities of Elven
Start Trial
SFA
ACRA
DAA
CR
SOC 1
SOC 2
System Security
On the technical level, Elven regularly evaluates system security and risk factors on a monthly basis and continuously improves its risk control capabilities, with specific measures including:
Data Encryption
Elven uses AWS KMS, a top-tier third-party encryption service, to encrypt all your private data. This means that your sensitive data will remain secure even if there is a system data leak or a hacker attack. Elven will not provide your financial data to anyone, including regulatory agencies, without your direct authorization. You can also revoke decryption permissions at any time to prevent data leakage caused by third-party systems, employees, or hacker attacks.
Multi-Factor Authentication
Elven offers several security measures, such as password protection, Two-Factor Authentication login, login reminders, single sign-on, and website protection, to prevent unauthorized access to your account.
Business Continuity and Disaster Recovery
At Elven, we prioritize your data security and business continuity. We implement measures such as data backup, remote storage, and real-time monitoring to deal with potentially catastrophic events. We also conduct yearly disaster recovery tests and drills to prepare for various risks and respond quickly and effectively to emergencies.
Permission Management, Log Auditing
Invite colleagues and collaborators to join your projects on Elven. Grant different project permissions for control over data and system functions. Our permission management system includes auditing and logging functions to monitor security risks and track system usage.
SOC 1 & SOC 2
Data security and confidentiality are the top priorities of Elven. We are firmly committed and invested in data security and information privacy with our clients. Elven has received SOC2 Type1 & Type2 and SOC1 Type2 audit reports from Insight Assurance (SOC auditor of OpenAI and Fortress Trust).
SOC 1

The SOC1 audit focuses on the compliance of Elven's systems and advisory processes with financial reporting standards and the accuracy and credibility of financial reporting workflows and system calculations.

SOC 2

The SOC2 audits whether Elven's financial systems meet standards for security, availability, confidentiality, and processing integrity.

SOC 1 Type 2 Report
Doownload
SOC 2 Type 2 Report
Doownload
Vulnerability Assessment Report
Doownload
If you have any concern, you can contact our DPO via
ziyue.gao@elven.com