Built to clear your procurement and your conscience.
Warewink operates inside institutional environments. That means a serious posture on encryption, access, governance, and responsible data use. This page documents what we do, in plain English, with no security theater.
Controls, in detail.
TLS 1.2+ for all transport. AES-256 at rest for stored data. Key rotation on a documented schedule.
SAML and OIDC single sign-on with SCIM provisioning, plus enforced multi-factor authentication for all human accounts.
Least-privilege roles, scoped per workspace and per data domain, with quarterly access reviews you can audit.
Logical isolation between workspaces with no cross-tenant queries. Optional dedicated infrastructure for regulated customers.
Choose where your data is processed and stored. Region-pinned deployments available for EU and US workloads.
Documented runbooks, on-call rotation, and contractual breach-notification timelines aligned to enterprise procurement.
Our data principles.
A signal engine is only as trustworthy as the discipline behind it. These are the lines we will not cross, written down and enforced contractually.
- 01We collect the minimum data required to detect a signal and route an opportunity. Nothing more.
- 02We do not resell your data, your signals, or any derived insights to another customer.
- 03We do not build shadow profiles of individuals or publish unverified inferences as facts.
- 04We honor data subject requests under GDPR and CCPA, and we pass them through to our subprocessors.
- 05We disclose subprocessors, license terms, and data lineage on request, in writing.