Security
Last updated: June 28, 2026
Dexvo connects to your HR and identity systems and handles sensitive employee data. Protecting that data is core to the product. This page outlines the measures we take.
Data isolation
The Service is multi-tenant. Every record is scoped to a tenant, and access is enforced so that one customer's data is never exposed to another. Database access is row-scoped to the authenticated tenant on every request.
Encryption
Data is encrypted in transit using TLS. Integration credentials (such as API tokens for Okta, Slack, GitHub, Zoom, and Jira) are encrypted at rest and are only decrypted to perform the actions you request.
Authentication and access control
Accounts are protected by authentication that requires a valid work email. Administrative functions are gated to authorized accounts. Access to production systems is limited to personnel who require it.
Least-privilege integrations
We recommend connecting integrations with the minimum scopes required for provisioning and offboarding. You can revoke any integration at any time from your dashboard, which removes our stored credentials for that system.
Auditing
Provisioning and offboarding actions are recorded in an audit log so you can review what was changed, when, and for whom.
Reporting a vulnerability
If you believe you have found a security issue, please contact us at security@dexvo.ai. We appreciate responsible disclosure and will work with you to investigate and resolve valid reports.