top of page

Security at Corporate Caviar

At Corporate Caviar, we prioritize the security and privacy of our clients’ data. We leverage Copilot’s robust security framework to ensure that every interaction and transaction on our platform is safeguarded. Our partnership with Copilot allows us to provide a secure, seamless experience for managing your travel needs. Here’s how we ensure your information remains protected:

Data Encryption

To protect your data in transit and at rest, Corporate Caviar uses industry-standard encryption protocols:

  • Data in Transit: All data sent between you and our platform is encrypted using Transport Layer Security (TLS) to prevent unauthorized access during transmission.

  • Data at Rest: Sensitive data is stored securely with AES-256 encryption, ensuring it remains protected while on our servers.

Identity and Access Management

We take proactive steps to secure access to our platform:

  • Single Sign-On (SSO) and Multi-Factor Authentication (MFA): Our platform supports SSO and requires MFA to add an extra layer of security to user accounts, ensuring only authorized individuals can access the system.

  • Role-Based Access Control (RBAC): Access to sensitive information is restricted based on role requirements, ensuring data is only available to authorized users.

Vulnerability Management

Our platform is continuously monitored to identify and address potential vulnerabilities:

  • Routine Vulnerability Scanning and Testing: We regularly conduct vulnerability scans and penetration tests to identify and resolve any security risks, ensuring our defenses remain strong and up-to-date.

  • Automatic Patching and Updates: Security patches are applied promptly to protect against emerging threats, maintaining the integrity of our systems.

Privacy Controls and Compliance

Corporate Caviar and Copilot adhere to strict data privacy standards:

  • GDPR and CCPA Compliance: We comply with all relevant privacy laws, including GDPR and CCPA, giving you control over your data and ensuring your rights to privacy are respected.

  • Data Minimization and Retention: We collect only the necessary information for travel management purposes and retain it in accordance with our privacy policies.

Dedicated Support and Incident Response

In the rare event of a security incident, we are prepared with a dedicated response plan:

  • 24/7 Monitoring and Incident Response: Our team monitors the platform around the clock and is ready to respond immediately to any security concerns.

  • Clear Communication: In case of an incident, we follow best practices to keep you informed with transparency and provide support to address any impacts.

Secure Data Centers and Physical Security

Our data centers meet rigorous physical security standards:

  • ISO 27001 Certification: Our data centers are ISO 27001 certified, meaning they meet internationally recognized standards for managing information security.

  • 24/7 Surveillance and Controlled Access: These facilities are protected by continuous surveillance, biometric access controls, and other advanced physical security measures.

Regular Audits and Certifications

We regularly undergo audits and certifications to maintain and improve our security practices:

  • SOC 2 and SOC 3 Compliance: Corporate Caviar’s platform is SOC 2 and SOC 3 compliant, demonstrating our commitment to upholding strict security, availability, and confidentiality standards.

bottom of page