Trust Center

Security isn't a feature. It's the foundation.

Folkgrove is built to pass the CISO review, not just the demo — isolated by tenant, encrypted by default, and audited end to end.

Compliance posture

  • SOC 2 Type II controls, audit-ready
  • ISO 27001-aligned ISMS
  • Third-party penetration testing planned pre-GA

Data isolation

  • A dedicated database per tenant
  • No shared rows, no noisy neighbors
  • Per-region data residency (IN / US)

Encryption

  • AES-256 encryption at rest
  • TLS 1.2+ in transit
  • Field-level encryption for PII

Access control

  • SSO via SAML & OIDC, SCIM provisioning
  • TOTP & push MFA
  • Policy-based authorization (Cerbos)

Privacy & audit

  • GDPR & India DPDP compliant
  • Self-service DSAR & erasure flows
  • Immutable audit trail of every action

Resilience

  • 99.9% uptime SLO per region
  • Automated encrypted backups
  • Disaster recovery with tested restores

Need our security package?

We'll share our control matrix, architecture overview, DPA, and the sub-processor list under NDA. Send your security questionnaire and we'll turn it around fast.

See Folkgrove running on your numbers.

A 30-minute walkthrough with a real payroll cycle and your org structure. No slides — the actual product.