Skip to content

How Relish Protects Your Data

Protecting critical data with enterprise-grade security, continuous validation, and fraud reimbursement.

  • AICPA SOC Award
  • HIPAA compliant for Relish
A padlock icon representing security of data

Enterprise Software, Reinvented for the Modern User

How We Protect Your Data

Relish utilizes enterprise-grade best practices to protect our customers’ sensitive data, and uses Drata to verify its security, availability, confidentiality, privacy and processing integrity controls. Relish works with independent experts to verify its security, privacy, and compliance controls, and has achieved SOC 2 Type 2 report against stringent standards.

We work with an independent auditor to maintain a SOC 2 Type II report, which objectively certifies our controls to ensure the continuous security of our customers’ data.

Developed by the Assurance Services Executive Committee (ASEC) of the AICPA, the Trust Services Criteria is the set of control criteria to be used when evaluating the suitability of the design and operating effectiveness of controls relevant to the security, availability, or processing integrity of information and systems, or the confidentiality or privacy of the information processed by the systems at an entity, a division, or an operating unit of an entity.

Employee Trainings

Security is a company-wide endeavor. All employees complete an annual security training program and employ best practices when handling customer data.

Penetration Tests

Relish works with industry leading security firms to perform annual network and application layer penetration tests.

Secure Software Development

Relish utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle. Learn more about Drata.

Data Encryption

Data is encrypted both in-transit using TLS and at rest.

Fraud Protection Guarantee

Relish combines continuous supplier validation and fraud protection, helping customers turn risk into control and data into confidence.

Continuous Security Control Monitoring

Relish uses Drata’s automation platform to continuously monitor 100+ security controls across the organization. Automated alerts and evidence collection allow Relish to confidently prove its security and compliance posture any day of the year, while fostering a security-first mindset and culture of compliance across the organization.

Learn more about SOC 2 Type II Compliance and Relish Security Program here.

Vulnerability Disclosure Program

If you believe you’ve discovered a bug in Relish’s security, please get in touch at infosec@relishiq.com. Our security team promptly investigates all reported issues.

Global bank data validation

Get Started with Relish

  • awards-icon-6
  • CPO Honors 2021 Finalist award
  • awards-icon-3
  • Spend Matters' 50 to watch 2024 award
  • Spend Matters' Future 5 award