Your Data is Protected with Industry-Leading Security Measures
At EKONAVA, we've built our platform with security as the foundation. We implement comprehensive, multi-layered security protocols to ensure your sustainability data remains confidential, secure, and protected at every stage of processing. Our commitment to data protection is integral to our mission of enabling sustainable business practices.
Start Secure AssessmentBuilding a secure foundation you can rely on
Consistent availability since launch, ensuring uninterrupted access to sustainability assessments.
To date, Ekonava platform has maintained zero data breaches, safeguarding sensitive clients data.
Similar to techniques like ESG-KIBERT , which achieved 93.3% accuracy in ESG rating classification.
Around-the-clock cloud monitoring ensures compliance checks, data integrity, and proactive support.
Verified protection standards you can trust
AES-256 & TLS 1.3
All data is encrypted both in transit and at rest using military-grade encryption algorithms. TLS 1.3 ensures secure communication channels, while AES-256 protects stored data with the same standard used by governments and financial institutions.
Automatic redaction
Our advanced AI automatically detects and redacts Personally Identifiable Information (PII) before processing. This includes names, addresses, contact information, and other sensitive data prior to analysis, ensuring privacy compliance and minimizing data exposure risks.
PCI DSS Level 1 compliance
All payment processing complies with PCI DSS Level 1, the highest security standard in the payment industry. We partner with Paystack, a trusted payment processor, to ensure your financial data is handled with maximum security.
EU data protection
Our platform is built with GDPR principles in mind, prioritizing user privacy and data protection. We are actively aligning with compliance standards by adopting practices such as data minimization, purpose limitation, and providing tools to support user rights.
Audited annually
Annually, we target to conduct SOC 2 Type II audits by independent third parties. This certification provides verification of our controls for security, availability, processing integrity, confidentiality, and privacy.
Automatic data purging
Documents are automatically purged immediately after processing completion. Our zero-retention policy means your sensitive data never remains on our servers longer than necessary for analysis.
How we safeguard your sensitive information
Documents are processed entirely in memory without permanent storage. This innovative approach ensures no residual data remains on disk after analysis. The processing occurs in isolated, ephemeral locations that are destroyed immediately after completing the assessment.
Our system automatically utilizes Microsoft Presidio (an NLP-based tool) to detect and remove sensitive personal information before any analysis occurs. It identifies patterns that match PII (such as names, addresses, emails, ID numbers, etc.) and replaces them with anonymized tokens. This process happens before the content reaches our analysis engines, ensuring that your private information never enters the processing pipeline.
Documents are automatically purged immediately after processing completion. We maintain only the assessment results and aggregated analytics—never the original documents. Our system automatically schedules deletion tasks that run within minutes of processing completion, with verification checks to ensure complete data removal.
From your signup credentials to your organization’s data, we are legally and ethically bound never to share information with third parties. Even EKONAVA staff cannot access client data unless explicitly required by a court order or legal process. We also enforce a strict zero-retention policy, ensuring all data is securely removed after processing. And for clients requiring full control, we can develop and deploy the system in-house giving you complete ownership of your data and architecture.
Step-by-step protection from upload to results
TLS 1.3 encryption
Documents are transferred using TLS 1.3, ensuring that no unauthorized party can intercept them during upload.
Automatic anonymization
AI identifies personal information such as names, emails, or IDs and replaces them with anonymized tokens before further processing.
In-memory only
The redacted file is analyzed in secure, isolated memory. No content is ever written to permanent storage during this process.
Instant insights
Analysis results are generated and displayed in real-time, giving you immediate, actionable insights.
Client-controlled storage
You decide whether to save results in our secure database for future access. If not, nothing is stored and all traces are permanently purged after processing.
Comprehensive protection across infrastructure, applications, and data
Built on AWS cloud with enterprise-grade protections:
Strict identity and access management across all systems:
We embed security in both development and deployment:
Your data is encrypted, monitored, and compliant with industry standards:
Join organizations worldwide who trust EKONAVA with their sensitive sustainability data. Our security-first approach ensures your information remains protected while you focus on achieving your sustainability goals.
Start Secure AssessmentAll assessments protected by enterprise-grade security with zero data retention