How do you handle EU data residency?

EU workspaces are hosted in a Google Cloud EU region. Data, backups, and admin tooling stay in-region. Customers can require EU-only model providers for sensitive workloads.

What does enterprise migration look like?

Dedicated migration engineer. SSO and SCIM configured first. Bulk import from your ATS in flight while we wire up integrations. Median cutover under 24 hours, including parallel-run period and rollback plan.

Do you have a DPA and customer-specific contracts?

Yes. Standard DPA aligned to GDPR Article 28 available immediately. Master Services Agreements, custom security addenda, and indemnification language are negotiated on Scale.

Why VitaeEnterprise-ready

Built for scale. And for security teams.

Q: Are we SOC 2 compliant today?

Type II is in progress with completion targeted Q3 2026. We operate under Type I controls today and run continuous monitoring via Vanta. Full evidence pack available under NDA.

SOC 2, GDPR, EEO, SSO, SCIM, RBAC, EU and US residency, 99.95% uptime. Everything your security review needs, ready before they ask.

Book a demo Security overview

SOC 2

Type II in progress. Audit log on every write, retained 7 years.

GDPR

Compliant by default. Right-to-be-forgotten flows built in.

EEO

Anonymous demographic capture. Audit-ready reporting on demand.

ISO 27001

Roadmap 2026. Aligned controls already in place.

01The platform/ six pillars

Everything your security review needs.

SSO + SCIM

Okta, Azure AD, Google

SAML 2.0 SSO and SCIM 2.0 user provisioning. Just-in-time creation, group sync, automated deprovisioning.

RBAC

Granular permissions

Role-based access at the workspace, team, role, and field level. Custom roles. Approval workflows for sensitive actions.

Residency

EU and US regions

Pick your region at workspace creation. Data never leaves it. EU customers can require EU-only model providers.

Uptime

99.95% SLA on Scale

Multi-region failover, hot standbys, no scheduled downtime. Status page and incident comms in real-time.

Audit

Every action logged

Who did what, when, with what AI model, against which record. Exportable via webhook or CSV to your SIEM or warehouse.

Insight

Real-time analytics

Pipeline movement, conversion, sourcing channel ROI, recruiter performance. Live dashboards in-app, with CSV and API export for your own warehouse.

99.95%

Uptime SLA on Scale plan

EU + US

Data residency regions

<24h

Median enterprise migration cutover

Customer data ever used to train shared models

02Enterprise FAQ/ four questions

Questions from your security team.

Short answers to the questions we get most often. Need more detail? Talk to sales.

Type II is in progress with completion targeted Q3 2026. We operate under Type I controls today and run continuous monitoring via Vanta. Full evidence pack available under NDA.