Security
Last updated: June 1, 2026
Security is foundational to how we build and operate 7E. We at 7Environmental Inc. ("7Environmental," "we," or "us") apply layered technical and organizational safeguards designed to protect customer data across our infrastructure, application, and internal operations.
This page summarizes the security measures we take. For the most current security posture, compliance reports, and the list of subprocessors we rely on, please visit our Trust Center at trust.the7e.com.
1. Compliance & Certifications
We are actively pursuing SOC 2 Type II and continuously monitor our security controls through Vanta. Our control environment is designed to meet recognized industry standards for the security, availability, and confidentiality of customer data.
Our Trust Center provides the authoritative, up-to-date view of our compliance status, security documentation, and the subprocessors we use. You can access it at trust.the7e.com.
2. Infrastructure Security
Our application runs on reputable cloud infrastructure providers that maintain robust physical and environmental security and their own industry-recognized certifications. We rely on network isolation, segmentation, and managed platform security controls to protect our production environment.
Access to production infrastructure is restricted on a least-privilege basis and protected by multi-factor authentication. We log and monitor system activity to help detect and respond to anomalies. The current list of subprocessors that support our services is published on our Trust Center.
3. Data Protection
Customer data is encrypted in transit using industry-standard TLS and encrypted at rest. We use managed key and secrets management to safeguard cryptographic material and credentials, and we design our systems to keep each customer's data logically isolated.
No internet-based service or storage system can be guaranteed to be completely secure. While we implement commercially reasonable safeguards designed to protect data, we cannot guarantee absolute security.
4. Access Controls
We follow the principle of least privilege. Access to systems and customer data is role-based, granted only as needed, protected by multi-factor authentication on internal systems, and reviewed periodically. Access is promptly revoked when it is no longer required.
5. Application Security
Security is built into our software development lifecycle. Changes undergo peer code review, we monitor our dependencies for known vulnerabilities, and we test our application regularly to identify and remediate issues. We apply security patches and updates on a risk-prioritized basis.
6. Business Continuity
We maintain regular, encrypted backups of customer data and have recovery processes designed to restore service in the event of a disruption. We periodically review these processes to help ensure data durability and availability.
7. Vulnerability Disclosure
We welcome reports from security researchers and the community. If you believe you have found a security vulnerability in our services, please report it responsibly to security@the7e.com. We ask that you act in good faith, avoid privacy violations and service disruption, and give us a reasonable opportunity to address the issue before any public disclosure.
We aim to acknowledge valid reports within five business days and will work with you to understand and resolve the issue promptly.
8. Contacting Us
7Environmental Inc.
600 Park Offices Dr., Suite 300
Durham, NC 27713
Security Questions and Vulnerability Reports: security@the7e.com