When enterprise teams evaluate feedback management tools, security isn't a nice-to-have — it's a requirement. Procurement teams, CISOs, and compliance officers need to verify that any tool handling customer data meets rigorous security standards.
SOC 2 Type II Certification
SOC 2 Type II is the gold standard for SaaS security. Unlike Type I (which evaluates controls at a point in time), Type II verifies that security controls are effective over an extended period — typically 6-12 months.
Beacon Analytics is actively pursuing SOC 2 Type II certification. Our security practices are designed to meet SOC 2 standards, including:
- Access controls that are continuously monitored and enforced
- Data encryption at rest and in transit
- Change management processes following industry best practices
- Incident response procedures that are tested and documented
- Availability and uptime commitments with monitoring in place
We will update this page when certification is complete.
Single Sign-On (SSO)
Enterprise teams need SSO to maintain centralized identity management. Beacon Analytics currently supports Google OAuth for authentication, with full SSO support (SAML 2.0, Azure AD, Okta) actively in development.
When available, SSO will ensure that user provisioning, deprovisioning, and access policies are managed through your existing identity provider.
GDPR & CCPA Compliance
Handling customer feedback means handling personal data. Beacon Analytics provides:
- Data export (Article 20 — Right to Data Portability)
- Data deletion (Article 17 — Right to Erasure)
- Consent management for feedback collection
- Data processing agreements (DPA) for all customers
- Secure data handling with encryption at rest and in transit
For CCPA, we support:
- Do Not Sell requests
- Consumer data access requests
- Deletion requests with full audit trails
Audit Logging
Every action in Beacon Analytics is logged with:
- Who performed the action
- What was changed
- When it happened
- The IP address and session context
Audit logs are immutable, searchable, and exportable — meeting the requirements of SOC 2, GDPR, and most enterprise compliance frameworks.
Why This Matters
Many feedback tools treat security as an afterthought. For enterprise teams, this creates risk — both regulatory and reputational.
Beacon Analytics is building enterprise security and data integrity into the platform from the ground up. GDPR and CCPA compliance, comprehensive audit logging, role-based access control, archive and restore protections, and version history with rollback are available today. SOC 2 Type II certification and full SSO support are actively in progress.
Data Integrity Protections
Beyond security, enterprise teams need confidence that their data is protected from accidental loss:
- Archive and restore — no data is permanently deleted through normal workflows. Removed items are archived and can be restored at any time.
- Version history — every change to feedback posts, roadmap items, and configurations is tracked. Roll back to any previous state.
- Complete audit logging — every action is logged with user attribution, timestamps, and change details.
- Data retention policies comply with all applicable local, state, and federal laws.
