Trust Center

Northwoods takes privacy obligations and the protection of your information seriously.
You can learn more about Northwoods privacy practices in our Privacy Policies.

Northwoods has undergone a Service Organization Controls audit (SOC 2 Type 2). Please contact legal@teamnorthwoods.com to request Northwoods’ most recent report.

Key Security
Features

Highly available solution monitored 24/7

Hosted on AWS using only FedRAMP & HIPAA-compliant services

Each customer instance is provisioned separately to isolate customer data

Data is encrypted in transit via HTTPS TLS 1.2 and (AES) 256-bit when at rest

Communication occurs over secured RESTful Web Services architecture

Mobile data resides in isolated application storage and is not available to other apps

FAQs

All customer data is stored in the United States.

All data is retained for the duration of your subscription. Northwoods provides your data back to you at the end of your subscription,
and all of your data is deleted from our systems in accordance with our subscription terms and security policies.

Yes. Traverse can integrate with the most common single sign-on providers, and MFA is supported by those providers.

Yes. All application and customer data is encrypted in transit and at rest.

The Northwoods development pipeline includes automated vulnerability tests to ensure all code changes are secure, and Northwoods undergoes third party penetration testing annually.

New employees and contractors in our organization are subjected to a background and reference check prior to joining the organization.

Northwoods is SOC 2 certified and uses the SSAE 18 and HIPAA security and privacy frameworks to create our internal policies and controls for operating our systems.

No. Neither Northwoods nor our AI sub-processor (AWS Bedrock) trains AI models on customer data.
Scroll to Top