SOC 2 Type II compliance, enterprise readiness shipped

SOC 2 Type II compliance

9-month observation period (April-December 2025) audited by independent AICPA-licensed firm. Type II validates that controls operated effectively over the observation window, not just at a point in time. Report available on request through sales channels.

• Type II achieved January 21, 2026
• 9-month observation period audited
• Clears procurement at Fortune 500 brands
• ISO 27001 certification next on roadmap

Single sign-on (SSO) on Agency plan

SAML 2.0 single sign-on is now available on Agency plan at no extra cost. Customers can connect Okta, Azure AD, Google Workspace plus other SAML-compatible identity providers. Setup typically takes 20 minutes for a brand with an existing IdP.

• SAML 2.0 supported
• Okta Azure AD Google Workspace plus custom IdPs
• Included on Agency plan
• Setup typically 20 minutes

Audit log API

Full workspace activity audit log is now exposed via API on Agency plan. Compliance teams can pull audit events into their SIEM (Splunk, Datadog, etc) for centralized security monitoring.

• All workspace activity logged
• REST API for streaming to SIEM
• 365-day retention on Agency plan
• Compliance teams can audit user activity

Outreach reply detection on Gmail aliases

Replies to outreach emails sent from a Gmail alias (the +tag form) were being attributed to a separate creator thread instead of the original. Now correctly resolves aliases back to the canonical thread.

Workspace activity feed time grouping

Activity feed events spanning multiple days were grouped inconsistently when the date crossed midnight in the user's timezone. Now groups by workspace timezone for consistency across teammates in different regions.