Security, Privacy, & Compliance2019-12-10T19:06:56+00:00

Welcome to Celigo’s Compliance Home Page!

As one of our top priorities, Celigo takes the security of our customers’ data very seriously. We work hard to keep your data secure, combat emerging threats, and implement innovations to make our security even better.

The following pages contain helpful information regarding Celigo’s security policies:


Why is data security critical for iPaaS?

As your integration platform, Celigo ties your SaaS applications together. Because these applications store critical information about your business processes, the Personally Identifiable Information (PII) of your customers, and financials, the security of your systems needs to be airtight. You owe your customers the promise that all of this data will be handled in a safe and secure manner, and never shared without their consent.

Our integration platform, Integrator.io, moves and processes sensitive information such as the personal information of your customers. Celigo secures the integration path end-to-end between your applications that persistently store data, as well as ensuring that the design and configuration of our infrastructure in AWS is tightly secured. On top of our commitments to making our product secure, we also perform due diligence on our service providers like AWS, Splunk, and MongoDB to ensure that they are also run securely. If you would like to verify the security of our infrastructure, please feel free to request a copy of our SOC 2 report.

The purpose of this page is to give our customers greater transparency about what we do to keep their data safe. As a testament to our emphasis on security, the following sections detail the ever growing and constantly updated list of regimens that Celigo is ready for.

Which regulatory or voluntary compliance regimens is Celigo ready for?

SOC 2 – Celigo completed SOC 2 audits: Type 1 and Type 2 reports are available upon request. 

EU GDPR – Celigo is GDPR ready, and can execute a DPA for customers interested in EU privacy.

FERPA (Family Educational Rights and Privacy Act of 1974) – Celigo is FERPA ready. We manage in-process data securely, so educational institutions and their suppliers can continue to rely on our products for their integrations.

What is on the roadmap for Celigo compliance?

HIPAA  – We will soon be HIPAA ready; the design is done, and we are in the final stages of implementation. When this is complete, we can execute Business Associate Agreements (BAA) as a Business Associate (BA), with Covered Entities (CE) and other BAs.

CCPA – We have completed the risk assessment and are finalizing our response. Please click here for more details.