Trust Center

background-image
Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

Welcome to Solva's Trust Center!

Solva Technology is ISO 27001:2022 certified and in the process of completing SOC 2 Type II. We process insurance claims data under strict HIPAA and GDPR controls, with infrastructure hosted on Google Cloud Platform and Microsoft Azure across US and EU regions.

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Access is governed by role-based access control (RBAC) with mandatory multi-factor authentication. We maintain a formal vulnerability management program with defined remediation SLAs, conduct annual penetration testing, and operate documented incident response and business continuity plans.

Our platform is designed to support customers subject to the Digital Operational Resilience Act (DORA) and the EU AI Act, with human oversight controls, model explainability, and comprehensive audit logging built into our claims processing workflow.

For detailed documentation, including our ISO 27001 certificate, pentest report, DPA, BAA, and SCCs, please request access.

Compliance

ISO/IEC 27001 Logo
ISO/IEC 27001
GDPR Logo
GDPR
HIPAA Logo
HIPAA
Standard Contractual Clause (SCC) Logo
Standard Contractual Clause (SCC)
SOC 2 Type 2 Logo
SOC 2 Type 2

Reports

ISO 27001
HIPAA Attestation
Pentest Report
View more

Legal

Business Associate Agreement
SubprocessorsMicrosoft Azure-company-logoGoogle Cloud-company-logo
Cyber Insurance
View more

Policies

Acceptable Use Policy
Asset Authorization and Monitoring Policy
Data Classification Policy
View more

Subprocessors

Built onSafeBase by Drata Logo