Dotenvx Enterprise Assurance License
The Purpose. Some organizations need more than encryption—they need formal assurance. The Enterprise Assurance License provides SOC 2–aligned documentation, a signed SLA, and dedicated support for your security and compliance teams.
Signed SLA & Legal Assurance. Formal agreement that dotenvx meets SOC 2 security, confidentiality, and availability controls.
Compliance Packet. Includes encryption details, architectural overview, and mapped responses addressing SOC 2 CC6 (Access Controls), CC7 (System Operations & Monitoring), CC8 (Change Management), and C1 (Confidentiality).
Zero-Knowledge Design. Verified architecture ensuring no plaintext secrets are ever transmitted, stored, or logged.
Dedicated Security Contact. Direct access to our security team for vendor assessments, auditor inquiries, or due diligence reviews.
Compliance-Ready Builds. Special enterprise builds remove debugging and diagnostic mechanisms, ensuring secrets can never appear in logs or traces.
These deliverables map directly to SOC 2 controls under Security (CC6, CC7), Confidentiality (C1), and System Operations (CC7). They provide clear, auditor-ready evidence that your organization protects .env files with enterprise rigor.
Included with the License. All materials are provided under NDA, updated annually, and designed to integrate with your existing compliance workflows:
Control Mappings. Detailed documentation mapping dotenvx features to SOC 2 criteria.
Policy Templates. Ready-to-use security and change-management policies aligned with dotenvx’s architecture.
Audit Evidence. Cryptographic proof of encryption, key rotation, and runtime activity logging.
Annual Update. Refreshed compliance packet each year to reflect product improvements and control updates.
Ready to simplify your audit? Request the Enterprise Assurance License to receive your signed SLA, compliance packet, and auditor-ready materials.