At Vena, the security and integrity of our customers’ data is critically important. That’s why our EPM software uses best-of-breed technologies and stringent operational processes to ensure that customer data is safe at all times. Vena’s security highlights include:
The Vena Compliance Team ensures that we continue to adhere to government and industry regulations, including SOC 1, SOC 2, GDPR, PIPEDA, and CCPA.
For SOC 1, the scope of assessment covers controls at Vena relevant to user entities internal controls over financial reporting. The SOC 2 Audit and the scope of assessment concerns controls at Vena relevant to security, availability, processing integrity, confidentiality and/or privacy.
Vena complies with all aspects of the European Union’s General Data Protection Regulation (GDPR). GDPR protects European Union data subjects’ fundamental right to privacy and the protection of personal data.
Vena fully complies with PIPEDA law. The Personal Information Protection and Electronic Documents Act (PIPEDA) is a Canadian federal law that applies to the collection, use, and disclosure of personal information in the course of commercial activities in all Canadian provinces.