Security

All data is encrypted in transit using TLS 1.2 or higher, and at rest using AES-256. Audio, transcripts, and canvas content are encrypted on our servers and on your devices.

Workspace owners control who can join, view, and edit content. Single sign-on (SSO) and SCIM provisioning are available on our Business and Enterprise plans. Internal access at MeetCanvas is limited to a small set of authorized engineers and is logged.

The Service runs on hardened, audited cloud infrastructure with isolated environments, automatic backups, and 24×7 monitoring. We follow industry best practices for vulnerability management and patching.

MeetCanvas is built to support common compliance requirements, including SOC 2, GDPR, and CCPA. We can provide auditor letters and a Data Processing Addendum (DPA) on request.

We have a documented incident response plan and notify affected customers in the event of a security incident impacting their data, in line with applicable law.

If you believe you've found a security issue, please email us at [email protected]. We appreciate responsible disclosure.