Compliance Certifications

InFlight’s completion of a SOC 2 audit indicates that our processes, procedures and controls have been formally evaluated and tested by an independent accounting and auditing firm.  Please contact us to obtain our report (under NDA).



InFlight’s information security processes

Annual security awareness training

InFlight shares and promotes security policies and guidelines with all employees, covering a range of topics, including: strong password policy, physical security policies, best practices in cybersecurity, privacy and confidentiality rules and policy.

Committed to integrity and ethical values

InFlight has formally documented organizational policies, a code of conduct, and conduct background checks for all employees.

All data is securely transmitted between your system of record and InFlight

Any exchange of user’s credentials or sensitive information is encrypted in transit.

Ongoing risk assessment performed on internal and subservice organizations

InFlight security and management teams continually monitor operational, strategic, and compliance risks.

Cloud hosted and architected for high availability

InFlight software is deployed and runs on Amazon Web Services.

AWS meets the standards for PCI DSS Level 1, ISO 9001, ISO 27001, ISO 27017, ISO 27018, SOC 1, SOC 2, SOC 3, and HIPAA eligibility.

Availability and vulnerability testing regularly performed and remediated

InFlight security features enhance existing application stacks

Single sign-on & two factor authentication

InFlight can integrate our products with most enterprise identity federation and single-sign-on providers or services. This integration allows your employees to access your Employee Experience platform using your corporate standard for authentication.

Learn more about SSO integration


Control the risk level of your application

InFlight allows you to control which pieces of your enterprise application are accessible outside your firewall.

Web Application Firewall support

Add a WAF, including support for the OWASP Top 10 protections, to your existing enterprise applications using InFlight.

Learn more about cloud hosting

There’s never a good time for a security breach, but right now is the worst

Learn more about InFlight’s Information Security compliance

Contact us

Copy link