Security policy

Data Classification Policy

1.0 (public summary)

Handling of public, internal, client-confidential, and regulated data categories where engagements require it.

Last updated May 22, 2026

Privion classifies information to apply appropriate handling requirements across consulting and hosted-service contexts.

Categories

Public information may be published on priviontech.com or in client-approved materials. Internal information supports Privion operations. Client-confidential information includes engagement data, credentials, and tenant configuration details. Regulated categories (for example PHI, PCI, or FERPA) receive additional controls when an engagement requires them.

Download Trust Center PDF

Full policy under NDA

This page is a public summary for procurement and security review. The complete policy, including operational procedures and evidence references, is available under NDA. Contact security@priviontech.com to request a copy.