yaroslav
yaroslav
Security · Privacy · Compliance

yaroslavTrust Center

Our commitment to security and privacy is embedded in everything we build. Review yaroslav's certifications and request access to our security documentation.

Evidence

Documents

Available on request. Approved reviewers get a secure, time-limited link.

SOC 2 Type 2 Report

REPORTS

ISO 27001 Certificate

REPORTS

Penetration Test Report

REPORTS

Access Control Policy

POLICIES

Asset Management Policy

POLICIES

Change Management Policy

POLICIES

Encryption Policy

POLICIES

Incident Response Policy

POLICIES

Information Security Policy

POLICIES

Software Development Lifecycle Policy

POLICIES

Vendor Management Policy

POLICIES

Controls

Security & compliance program

The controls and practices behind our posture.

Product Security

  • Audit Logging
  • Data Security
  • Multi-Factor Authentication

Data Security

  • Access Monitoring
  • Certificates of Destruction
  • Data Asset Classification

App Security

  • Responsible Disclosure
  • Application Penetration Testing
  • Bot Detection

AI

  • AI Security
  • AI Monitoring
  • AI Risk Management

ESG

  • Anti-Bribery and Corruption
  • Anti-Competitive Practices
  • Anti-Modern Slavery

Infrastructure

  • Status Monitoring
  • Amazon Web Services
  • Anti-DDoS

Network Security

  • Bot Detection
  • Data Loss Prevention
  • Distributed Denial of Service Protection (Anti-DDoS)

Policies

  • Access Control Policy
  • Asset Management Policy
  • Change Management Policy

Risk Management

  • Data Access / Impact Levels
  • Risk Assessments
  • Supply Chain Risk Management

BC/DR

  • Business Continuity Management System (BCMS)
  • Business Continuity Plan (BCP)
  • Contingency Plan Testing / Lessons Learned

Training

  • Employee Privacy Training
  • Phishing Training
  • Role-Based Training
Changelog

Trust center updates

Recent changes to our security and compliance posture.

  1. 2026-04-15

    Certification

    Completed annual SOC 2 Type II audit

    We renewed our SOC 2 Type II report covering security, availability and confidentiality. Request access to review the full report.

  2. 2026-02-02

    Privacy

    Added subprocessor transparency page

    We now publish a live list of subprocessors so customers can review every vendor that touches their data.

  3. 2025-11-20

    Product

    Rolled out SAML SSO for enterprise customers

    Enterprise customers can now enforce SAML single sign-on across their workspace.

Knowledge base

Frequently asked

Answers to common security and privacy questions.

Where is our data hosted?+

On AWS in the US, encrypted at rest (AES-256) and in transit (TLS 1.2+).

Do you support SSO?+

Yes — SAML and Google SSO are available on the Scale plan.

How do I get the SOC 2 report?+

Request access to any gated document and we'll email you a secure, time-limited link.