FlexiSurvey applies layered controls to separate customer data, protect sensitive fields, govern access and preserve an operational record. This page states the current control and assurance status; detailed documents are available for qualified reviews.

Tenant isolation is enforced in the application and by PostgreSQL row-level security policies on tenant-scoped tables, so a query that omits the tenant filter still returns no other tenant data. A dated architecture note is available for qualified reviews.
Data is encrypted in transit (TLS) and at rest through AWS-managed storage encryption covering the database and file store, and mobile devices use device encryption (AES-256-GCM). Tenant data is additionally isolated by database-enforced row-level security.
Sign-in supports passwords with TOTP two-factor authentication, Google and Microsoft social sign-in, and enterprise SAML 2.0 single sign-on with per-tenant identity-provider configuration. Administrators can apply role-based permissions, session controls and IP allow-lists.
Important administrative and data actions are recorded in an audit log with configurable retention. Administrators control who can view and export logs, and permission decisions are themselves recorded.
FlexiSurvey supports consent records, data-subject access and erasure requests, configurable retention and deletion, and encrypted backups. AI narrative features send only de-identified, pre-aggregated figures to the model provider, never raw response rows.
FlexiSurvey is hosted on Amazon Web Services in the United States (us-east-1), a single region, with automated encrypted backups and point-in-time recovery.
Current control and assurance status. Detailed documents are available under NDA for qualified reviews.
| Area | Current status | Evidence available |
|---|---|---|
| SOC 2 | SOC 2-aligned controls with continuous internal monitoring; no third-party Type II attestation at this time | Control mapping on request |
| Penetration testing | Contact our security team for current status | Executive summary under NDA where available |
| GDPR | Contractual and operational measures, not a certification | DPA, privacy notice, records-of-processing support |
| Accessibility | Built to WCAG 2.1 AA guidelines with automated accessibility checks in CI; no independent VPAT yet | Accessibility statement on request |
| Backup and recovery | Automated encrypted backups with point-in-time recovery | Backup and recovery summary on request |
| Tenant isolation | Enforced in the application and by PostgreSQL row-level security on tenant-scoped tables | Architecture note on request |
Found a potential security issue? Email our security team and we will acknowledge your report and work with you on a resolution.
support@spancorp.netFor procurement or security review, contact us for the current control mapping, data-handling information and available evidence under NDA.