TRUST YOUR DIGITAL LIBRARY TO TENOVOS

We are committed to your security

At Tenovos, security and trust are paramount.

SOC 2 Compliance

We align our operations with the SOC 2 framework, a rigorous standard developed by the American Institute of Certified Public Accountants (AICPA) that sets out how service organizations should manage and protect customer data across key criteria. By adhering to SOC 2’s five Trust Services Criteria—Security, Availability, Processing Integrity, Confidentiality and Privacy—we demonstrate our commitment to maintaining a strong control environment and managing your data with the highest level of care.

Learn more about SOC 2 on the AICPA website:
SOC 2® : SOC for Service Organizations: Trust Services Criteria

Trust Center

We provide our customers and prospective customers access to our Trust Center—a centralized, self-serve portal containing the most up-to-date information and resources on our security protocols and documentation.

Prospective customers can request a link to access the Trust Center through their assigned Account Executive, while current customers can reach out to their Customer Success Manager.

Physical Security

Tenovos is delivered via the industry-leading Amazon Web Services platform, which houses the data of some of the world’s most sensitive organizations with extremely high security and compliance requirements. AWS has a large team of experts constantly monitoring their platforms for Cloud Security, Penetration, Compliance and many other elements. For a detailed explanation of each category and the processes involved, please visit https://aws.amazon.com/security/. AWS is fully certified in a host of compliance categories, and includes HIPAA eligible and is PCI DSS, SOC, ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, and ISO 9001 compliant.

Durability

Tenovos stores customer content in AWS S3. S3 is rated for 99.999999999% durability

(see https://aws.amazon.com/s3/ for reference).

Encryption

Tenovos uses the latest in cryptographic technologies to ensure that content stays encrypted at all times. We employ TLS 1.2 for content in transit and AES-256 for content at rest.

Personnel

Security and Data Integrity are a part of our culture. Every member of the team has undergone a background check and we conduct security training annually. Internally, MFA is required to access all of our critical systems.

Privacy

Tenovos does not collect personal information from its users. The only personal information that is stored in the Tenovos system is the email address used to log in. Tenovos does not share any information with third parties.

Capacity

Tenovos is hosted in AWS and relies heavily on Amazon’s serverless technologies including S3, Aurora and Neptune Graph DB. ECS clusters auto-scale to meet the demand on the system. This platform is capable of storing petabytes of data and is capable of handling hundreds of transactions per second.