Everest Log10 Trust Center

Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

Welcome to Log10’s Trust Center. Security, privacy, and reliability are foundational to how we build and operate Everest.

Everest is designed for regulated, data-sensitive workflows, and we maintain a SOC 2 Type II–audited control environment with HIPAA-aware safeguards. Customer data is encrypted in transit and at rest, processed within our AWS US-West environment, and governed by strict access controls, audit logging, and data retention policies.

When Everest integrates with external AI providers, only the minimum necessary content is transmitted, with no provider data retention or training use. We do not share PHI with third-party AI providers unless a Business Associate Agreement (BAA) is in place.

This Trust Center provides transparency into our security posture, compliance certifications, and technical controls, and offers access to our audit reports and supporting documentation. If you have questions or need additional assurance materials, our team is happy to help.

Compliance

HIPAA Logo
HIPAA
SOC 2 Type 2 Logo
SOC 2 Type 2

Documents

REPORTSData Flow Diagram (DFD)
REPORTSHIPAA Report
REPORTSNetwork Diagram
REPORTSPentest Report
REPORTSSOC 2 Report
APP SECURITYApplication Penetration Testing
NETWORK SECURITYNetwork Penetration Testing
CORPORATE SECURITYPenetration Testing

Risk Profile

Data Access LevelRestricted
Impact LevelSubstantial
Recovery Time Objective8 hours
View more

Product Security

Audit Logging
Multi-Factor Authentication
Role-Based Access Control
View more

Reports

Data Flow Diagram (DFD)
HIPAA Report
Network Diagram
View more

Self-Assessments

We are working on our security compliance. We can provide completed questionnaires upon request.

Data Security

Access Monitoring
Data Backups
Encryption-at-rest
View more

App Security

Application Penetration Testing
Code Analysis
Secure Development Training
View more

AI

We take the usage of AI seriously in our organization and work to ensure security and reliability of the AI.

ESG

We prioritize and take environmental, social, and governance (ESG) considerations seriously in our operations and decision-making processes.

Legal

Cyber Insurance
Data Processing Agreement
Privacy Policy
View more

Data Privacy

Privacy of customer data is top of mind. We follow industry best practices and follow all applicable privacy regulations.

Access Control

Access Log Management
Device Lock
Logging
View more

Infrastructure

Amazon Web Services
Cloud Workload Protection
Container Orchestration
View more

Endpoint Security

Disk Encryption
Threat Detection

Network Security

Distributed Denial of Service Protection (Anti-DDoS)
DNSSEC
Firewall
View more

Corporate Security

Employee Training
Incident Response
Internal Assessments
View more

Policies

We are currently working with experts to put together our company policies. Please contact us for more details.

Incident Response

Pager Service

Risk Management

Data Access/Impact Levels
Risk Assessments

Asset Management

Asset Tracking

BC/DR

Data Backup/Backup Protection
Failover/High Availability
Tabletop Exercises

Training

Security Awareness Training

Continuous Monitoring

Automated Compliance Monitoring
Event & Audit Log Management
Intrusion Detection System (IDS)
Built onSafeBase by Drata Logo