Routespring Logo
Request Demo

A Foundation of Trust and Security

Our platform is built on a framework of enterprise-grade security, compliance, and data privacy to protect your mission-critical operations.

Independently Verified Compliance

SOC 2 Type II audited

Routespring undergoes SOC 2 Type II audits. The latest report is available under NDA for qualified customer and procurement reviews.

ISO/IEC 27001:2022 certified

Routespring maintains an ISO/IEC 27001:2022 certified information security management system. Certificate details are available to qualified procurement and security teams during vendor review.

Core Security & Data Protection Pillars

Data Encryption

Data is encrypted in transit and at rest to protect crew, traveler, and payment information.

Role-Based Access Control (RBAC)

Our platform enforces the principle of least privilege. You can define granular roles and permissions to ensure users only access the data they need to perform their duties.

Immutable Audit Logs

A comprehensive, immutable log of all significant actions taken within the platform is maintained. This provides a clear audit trail for security analysis and compliance reviews.

Secure Data Handling & Isolation

Your data is logically isolated and is never used for training any internal or third-party AI models. Your data is yours alone, and we treat it as confidential information.

Vulnerability Management

We conduct regular vulnerability scanning and engage independent third parties for penetration testing to proactively identify and remediate potential security risks.

Secure Software Development

We follow a secure software development lifecycle (SDLC) that includes code analysis, peer reviews, and security testing as part of our standard development process.

Our Commitment to Responsible Data Stewardship

Your Data is Not Our Product

We are a software and service provider. We do not sell, rent, or share your data with third parties for marketing purposes. Our business model is based on providing you with our service, not on monetizing your data.

Your Data is Not Used for AI Training

Your business data, documents, and user information are never used to train any large language models (LLMs) or other machine learning models for public or third-party use. Our AI features use your data only to provide service to you.

Personnel Access is Strictly Controlled

Access to customer data by our employees is limited to a small, authorized group of personnel on a need-to-know basis for the purposes of system maintenance, support, and security. All such access is logged and monitored.

Frequently Asked Questions

Have More Questions?

Our security team is ready to provide the documentation and answers you need to conduct your due diligence. Contact us to learn more about our enterprise security program.

Talk to an Expert