Security and Compliance at Everlaw
Enterprise-grade security that spans people, processes, and technology to safeguard the most critical data.
Setting the Bar for Cloud Security
Everlaw’s security and compliance program is holistic and part of our core philosophy. It demonstrates our commitment to ethics and our company values, as well as compliance with our security, privacy and confidentiality commitments to customers and applicable laws and regulations. Access our whitepaper here.
Security and Data Protection Compliance
At Everlaw, we undergo rigorous security and privacy testing by independent third-party auditors on a regular basis. In 2020, Everlaw joined an exclusive group of cloud service providers in the U.S. who achieved a FedRAMP Moderate Authorization for our federal cloud.

SOC 2 Type 2 Certified in Security, Availability, Confidentiality and Privacy

FedRAMP Moderate Authorization for Everlaw’s Federal Cloud

Supports HIPAA Compliance
Everlaw’s SOC 2 Type 2 certification includes an assessment of the applicable HIPAA and HITECH safeguards.

Supports GDPR and CCPA Compliance
Everlaw has committed to support GDPR and CCPA compliance. See our Privacy Policy for more information about your privacy rights and how Everlaw supports data protection compliance.
How We Do It
1. Access
Log in with multi-factor authentication and single sign-on support
2. Encryption
All data is encrypted in transit and at rest
3. System Availability
Average annual uptime exceeds 99.9%, including scheduled maintenance windows
4. Proactive Security Programs
We regularly perform intrusion detection, vulnerability scanning, penetration testing, and continuous monitoring on our codebase
Related Content
Questions? Contact us at security@everlaw.com.