Skip to content
Pre-releaseHovermark is in active development. Try the preview atappdev.hovermark.co.uk
Hovermark

Security & trust

Built for compliance — including our own.

Multi-tenant isolation, Microsoft Entra SSO, encryption at rest and in transit, West Europe residency, and GDPR-aligned processing.

West EuropeAzure-nativeGDPRSOC 2 in progressEntra ID SSO (PKCE)SAML on Enterprise

We treat security like a product feature, not a checkbox. Hovermark is built on the same Azure primitives you'd use to run a regulated workload of your own.

The pillars of our trust posture

Each one is documented in our trust packet — available under NDA.

  • Multi-tenant isolation

    Every customer gets a logically isolated tenant. Row-level security and per-tenant encryption keys mean one customer's data is never visible — accidentally or otherwise — to another.

  • Microsoft Entra ID SSO

    Sign in with your existing Microsoft Entra ID tenant via PKCE. No shared service accounts, no orphaned access. Enterprise plans add SAML for non-Microsoft IdPs.

  • Encryption at rest and in transit

    TLS 1.2+ on every request. AES-256 encryption at rest using Azure-managed keys, with customer-managed key (CMK) options on Enterprise.

  • EEA data residency (West Europe)

    All inspection data, photos, and signatures are stored in Azure West Europe. We never replicate primary data outside the European Economic Area without your explicit consent.

  • GDPR-aligned processing

    We act as your data processor. We sign a DPA on request, publish a versioned subprocessor list, and honour data subject access and erasure requests within statutory timelines.

  • Tamper-evident audit log

    Every meaningful action — sign-in, asset edit, inspection submit, certificate export — is recorded with actor, timestamp, and IP, on an append-only log.

  • SOC 2 Type II — in progress

    We are working towards SOC 2 Type II. Our trust packet (architecture diagrams, sub-processor list, security overview) is available under NDA.

  • Responsible disclosure

    Found something? Email security@hovermark.com. We acknowledge reports promptly and credit researchers who would like to be named.

Stop chasing paperwork. Start proving compliance.

Hovermark is in active development. Try the preview today, or drop your email and we'll let you know the moment we hit general availability.

Try the previewTalk to sales

Waitlist

Notify me at general availability

One email when we go live. That's it.

We'll only email you when Hovermark hits general availability. No marketing list.