Security at Niche

Protecting your data is our top priority. We take a proactive, transparent approach to security.

SOC 2 Compliance

Niche is SOC 2 Type II compliant, meaning our security controls have been independently audited and verified. This certification demonstrates our commitment to maintaining the highest standards for data security, availability, processing integrity, confidentiality, and privacy.

SOC 2 Type II Independently Audited Annually Renewed

Trust Center

Our SOC 2 report and security documentation are available upon request for customers and prospects.

Request Access

Security Practices

We implement comprehensive security measures across every layer of our platform to protect your data and your customers' information.

Data Encryption

All data is encrypted at rest using AES-256 and in transit using TLS 1.3. Customer conversation data is encrypted with dedicated keys.

AES-256 TLS 1.3

Access Controls

Role-based access control (RBAC) with multi-factor authentication. Principle of least privilege enforced across all systems.

RBAC MFA Least Privilege

Regular Audits

Annual third-party penetration testing and continuous vulnerability scanning. We proactively identify and remediate security risks.

Pen Testing Vuln Scanning

Secure Dev Lifecycle

Security is baked into every stage of development: code review, static analysis, dependency scanning, and automated testing.

Code Review SAST SCA

Third-Party Risk

All vendors and integrations undergo security review before adoption. We continuously monitor third-party risk and compliance status.

Vendor Review Monitoring

Backup & Recovery

Automated daily backups with point-in-time recovery. Disaster recovery procedures tested regularly with defined RTO and RPO.

Daily Backups DR Tested

Incident Response

Documented incident response plan with defined escalation paths. 24/7 monitoring with automated alerting for security events.

24/7 Monitoring Auto-Alert

Employee Training

All team members complete security awareness training upon hire and annually. Phishing simulations and secure coding workshops conducted regularly.

Annual Training Phishing Sims

Reporting a Security Issue

We take all security reports seriously. If you believe you've found a vulnerability in our platform, please report it responsibly. We'll acknowledge your report within 24 hours and work with you to understand and address the issue.

1

Email us at security@nicheandleads.com

Include a detailed description of the vulnerability

2

We'll acknowledge within 24 hours

Our security team will review and triage the report

3

We'll work together to resolve it

We'll keep you updated throughout the remediation process

Our Commitment

Security isn't a feature. It's a foundation. Every system we build, every integration we support, and every conversation we handle is designed with security at its core. We continuously invest in our security posture to earn and maintain your trust.

  • Transparency in our security practices
  • Rapid response to security concerns
  • Continuous improvement of our security posture
  • Compliance with industry standards

Questions About Security?

Reach out to our security team for any questions about our practices, compliance, or to request our SOC 2 report.

Contact Security Team Book Demo