# Security & Compliance
> Protecting your peace-of-mind; our number one priority is to keep your residents’ data safe.

# Built for the security standards government requires

Protecting the data government depends on is the baseline, not a feature. Whether it's constituent records, agency operations, or program data moving between systems, Kaizen is built for the security standards public institutions require. Compliance, encryption, and access controls are engineered into the platform, not bolted on.

---

## Trusted by agencies, IT, and procurement teams at every level of government

---

- **Management**: SOC 2 Type II audited and HIPAA compliant. Independent audits and continuous monitoring keep us accountable to the standards government requires.
- **Storage**: Data is encrypted in transit and at rest. Role-based access controls and full audit trails are built in so agencies always know who accessed what and when.
- **Security**: Secure by design at every layer: infrastructure, application, and operations. Continuous threat monitoring, regular penetration testing, and rapid response to emerging vulnerabilities.