Security
Enterprise-grade security, by default
Security is built into Cadence from the ground up. Your data is isolated by tenant, encrypted in transit and at rest, and protected at every level of the platform.
Core protections
Built secure from day one
Cadence protects data at every level: database isolation, API security, and application access controls.
Complete Data Isolation
Every organisation's data is completely separate. Tenant-level isolation at the database, API, and application layers ensures no data leakage between accounts.
Encryption Everywhere
All data is encrypted in transit (TLS 1.2+) and at rest. Sensitive information is protected throughout the platform.
Multi-Factor Authentication
Secure login with multi-factor authentication, session management with automatic expiry, and token rotation to protect every account.
Role-Based Access Control
Granular permissions for executives, executive assistants, tenant admins, and platform admins. Every user sees only what they need to.
Zero Credential Exposure
All secrets and credentials are managed in a dedicated vault — never stored in code, configuration files, or application logs.
Secure Integrations
Calendar sync and external connections use strict validation and allow-listing. Webhook notifications are cryptographically signed.
Infrastructure
Hosted on Microsoft Azure
Cadence runs on Microsoft Azure with enterprise-grade infrastructure security and clear data residency.
EU Data Residency
All data hosted in Azure West Europe (Netherlands). No data is transferred outside the EU for processing or storage.
Credential-Free Infrastructure
Internal services authenticate without stored passwords or API keys. The platform manages infrastructure access — no credentials to leak.
Continuous Monitoring
Platform health is monitored around the clock with scoped, time-limited access to diagnostics. No production data is exposed during monitoring.
Ongoing practices
Security requires ongoing investment
We invest in proactive security testing and access controls to stay ahead of threats.
Monthly Penetration Testing
We conduct monthly penetration tests against Cadence to find and fix vulnerabilities before they become risks. Results are reviewed by engineering and findings are addressed within set timelines.
Single Sign-On (SSO)
SSO is available on Professional and Enterprise plans. Your team authenticates through your existing identity provider. Centralised access management reduces credential sprawl.
EU Data Residency
All customer data resides in the European Union (Azure West Europe, Netherlands). No data is transferred outside the EU for processing or storage.
Dependency & Vulnerability Scanning
Automated vulnerability scanning checks every code change and dependency update. Known vulnerabilities are flagged and patched before production.
Questions about security?
We're happy to walk through our security approach, share our policies, or discuss compliance requirements for your organisation.