We Understand That Security Is Important

Spiro was built with security in mind, using industry best practices to meet the security and compliance requirements of our customers.

OAuth App Authentication

We use OAuth2 to authorize SaaS services and do not store usernames or passwords for those services.

Secure Cloud Hosting

We are hosted on AWS, which provides robust physical data center security and environmental controls.

SOC 2 Type II Certified

We’ve been certified for SOC 2 Type II, which evaluates our security systems and practices.

Single Sign-on

We work with Okta, Google and Microsoft to enable single sign-on sessions.

Data Privacy

You own your data and are in full control. We will never delete without giving you time to export it.

Privacy Controls

We allow you to turn privacy on and off to meet the needs of your employees and customers.


We enable encryption of sensitive data both at rest and in transit over public networks.

Data Usage

We only use customer data to provide the service, and will never mine your data.

Data Recovery

We regularly back up your data and provide a maximum 24-hour RTO and RPO.