Security
Client Culture handles sensitive client feedback and business data. We take that responsibility seriously. Here is how we protect it.
Infrastructure
- Hosted on SOC 2 compliant cloud infrastructure (Vercel, AWS, Neon)
- TLS 1.2+ encryption for all data in transit
- AES-256 encryption for data at rest
- Automated backups with point-in-time recovery
- Infrastructure monitoring and alerting
Authentication & Access
- Enterprise Single Sign-On via Microsoft Entra ID
- Passwordless authentication (magic link, Google, Microsoft)
- Role-based access control with office and team scoping
- Audit-logged administrative access
Application Security
- Rate limiting on all public and sensitive endpoints
- Input validation on every API route
- Parameterised database queries via ORM (no raw SQL)
- Framework-level CSRF and XSS protection
Email & Survey Security
- SPF and DKIM authentication on all sending domains
- Opt-out links in every survey email, respected permanently
- Configurable survey anonymity settings per firm
- Unique, time-limited tokens for survey access
EphemeralAI™
Your insights stay. The raw data doesn't have to. You choose.
Client feedback is sensitive. Our EphemeralAI™ privacy framework gives each firm control over how long data is retained — from same-day deletion to extended retention, depending on their compliance requirements and analytical needs.
When AI is used to analyse survey feedback, personal identifiers are detected and stripped before any data reaches an AI provider. OpenAI and Anthropic never see your respondents' names, email addresses, or other identifying details.
The platform extracts themes and insights from feedback, then deletes the source material according to each firm's retention setting. Aggregate patterns persist. Individual responses expire. Your firm keeps the intelligence without the exposure.
Firm-controlled retention
Each firm sets their own data retention period. Same-day deletion is available for firms with strict data minimisation policies.
Anonymised AI processing
Personal identifiers are stripped before AI analysis. AI providers receive only anonymised, de-identified text.
Insights persist, data expires
Themes and aggregate patterns are extracted before source data is deleted. Your firm keeps the intelligence without retaining the raw responses.
Data Privacy
Client Culture operates under the Australian Privacy Act 1988, UK GDPR, and EU GDPR. We act as a data processor on behalf of our firm clients, handling survey responses and feedback data according to each firm's instructions and our data processing agreements.
Staff access is scoped by role, office, and team — people only see the data relevant to their responsibilities. Administrative actions are audit-logged.
Our full privacy policy, including regional addenda for Australia, the UK, and the EEA, is available at app.clientculture.com/privacy.
Sub-processors
We use a small number of trusted third-party services to operate the platform. All sub-processors are contractually bound to protect your data.
| Provider | Purpose | Location |
|---|---|---|
| Vercel | Application hosting and edge network | US (Sydney edge) |
| Neon (PostgreSQL) | Database hosting | US |
| Amazon Web Services | Email delivery (SES) | Sydney, AU |
| Resend | Transactional email | US |
| OpenAI | AI analysis (anonymised data only) | US |
| Anthropic | AI analysis (anonymised data only) | US |
Questions?
For security inquiries, contact security@clientculture.com. For privacy questions, contact privacy@clientculture.com.