Our efforts to ensure the security of our clients’ and their customers’ data involve a range of proven tactics, third-party audits and certifications, in-depth customer audits, and direct dialog to verify our ability to meet enterprise-specific security demands.
Shared Responsibility Model
At Riva, we operate on a shared responsibility model that assigns specific security roles to all parties involved in the aggregation, storage, distribution, and use of enterprise data. In most cases, data responsibility is shared between the enterprise, a data residency provider, and, as keepers of the integration application, Riva. Here’s how these responsibilities are typically assigned:
Data Residency Providers
Third-Party Security CertificationsRiva maintains certifications with a number of third-party security auditing organizations. These certifications, many of which are nation, region, and industry-specific, are the result of in-depth evaluations of Riva’s written data security protocols – and verify that we scrupulously observe those protocols to protect enterprise data. Riva currently maintains the following certifications:
Industry-standard security designations:
- SOC 2, Type 2
- SSAE 16
- ISAE 3402
Data residency and access legislation certifications:
- Australian Data Privacy
- PCI DSS Compliant
- ISO 27001
- FIPS Validated 140-2
- CSA Cloud Security Alliance
There is no customer lifetime value without Trust
Privacy You Can Trust
Industry Specific Compliance
Want to learn more?
Our advisors are here to help. They can answer all of your Riva-related questions, including topics like product portfolio, pricing, security, scalability, and compliance with industry regulations. Fill out the form below and a Riva advisor will give you a call.