Your people data is safe with us

Arbor utilizes enterprise-grade best practices to protect our customers’ data.


SOC 2 compliant

Arbor is proud to be SOC 2 Type II compliant. This attestation is the result of a rigorous audit of our information security policies, processes, and procedures by an independent auditor. Our partners can rest assured their data is safe with us.

GDPR compliant

Arbor is fully committed to GDPR compliance. We have updated our data processing policies to meet GDPR requirements, ensuring your personal data is collected, stored, and processed transparently, securely, and accountably. Your privacy is our priority.

Continuous monitoring

Arbor uses Drata’s automation platform to continuously monitor 100+ internal security controls across the organization against the highest possible standards. Automated alerts and evidence collection allows Arbor to confidently prove its security and compliance posture any day of the year, while fostering a security-first mindset and culture of compliance across the organization.

Data Protection

Infrastructure and Application Security

We conduct regular 3rd party vulnerability assessments and penetration testing (VAPT) to identify and remediate any weaknesses in our network and applications.

Data Encryption

We use AES-256 encryption for data at rest and secure TLS/SSL protocols for data in transit to protect your sensitive information.

Business Continuity and Disaster Recovery

Our robust business continuity and disaster recovery plans minimize downtime, with continuous monitoring and well-defined incident response procedures.

Secure Processes

We enforce strict access controls, provide regular security training to employees, and conduct thorough vendor assessments to maintain data confidentiality and integrity.

Secure Supply Chain

We implement rigorous vendor assessments, continuously monitor our software bill of materials (SBOM), and proactively address vulnerabilities to maintain the integrity and trustworthiness of our software solutions.Co