- Hosting
- Microsoft Azure
- Encryption in transit
- TLS 1.2+
- Encryption at rest
- AES-256
- Access control
- Role-based, per matter
- Audit trail
- Every action exportable
- Model training
- Never on customer data
Where the data lives
DealTracker runs on Microsoft Azure. We use managed services for storage, compute, and database, with regional residency available on request. We do not move customer data outside the contracted region.
Encryption
All customer data is encrypted in transit using TLS 1.2 or higher and at rest using AES-256. Encryption keys are managed in Azure Key Vault.
Access control
Access to customer data is role-based and scoped per matter. Users only see deals they’re assigned to. Internally, access is principle-of-least-privilege, logged, and reviewed.
Audit trail
Every action on a deal — document upload, edit, assignment, decision — is captured with a timestamp and actor. Audit logs are exportable for your firm’s compliance reviews.
No model training
Customer data is never used to train, fine-tune, or evaluate any model, including ours or any third-party model we call. Privileged work stays privileged.
SOC 2 Type II
SOC 2 Type II is in scope; we are working toward report availability in 2026. We’ll update this page with the audit window and report status as we progress. Until then, detailed control documentation is shared under NDA.
Data deletion
On request, customer data is deleted within 30 days of the request. Backups are purged on the next backup-retention cycle.
Contact
For security questions, vendor questionnaires, or to request the security pack under NDA, email info@getdealtracker.com.