Mavenlink Customer Trust and Security

Earning our customers’ trust is a responsibility we take extremely seriously. We understand that trust is based on the knowledge that our product will work as expected (when expected), that your information will be safe and secure, and that we will take a proactive attitude toward maintaining these standards at all times.

Mavenlink protects your information and privacy by implementing various security measures throughout the Mavenlink application, and also by participating in an industry-leading responsible disclosure program, in which we partner with the security community to continuously test the security of our products. We also routinely perform scheduled maintenance on our product to fix any bugs and to make sure Mavenlink is working as intended. All Mavenlink users benefit from our strict adherence to best practice security and privacy guidelines, as well as our commitment to continuous product improvement with minimal downtime.

If you have any questions about Mavenlink’s commitment to privacy, security, or development, please don’t hesitate to contact our customer support team.

Security & Administration

Mavenlink takes the security of our product and customers’ data exceptionally seriously. We run an industry-leading Responsible Disclosure Program, in which we partner with the security community to continuously test the security of our products.

  • Security/Authentication: Mavenlink is secured by SSL encryption and requires a secure password for login. We support OpenID and OAuth2 Authentication, which can be tied back to an LDAP directory.

  • Administration: Mavenlink’s user and account model is built on a cascading permission set where only those given Administrative rights on the account can invite additional users and manage the permissions, financial rates, and privileges of the other users on the account.

  • Project-based Controls: All project-specific collaboration, file sharing, and communication is visible only to users invited to participate in those projects, allowing administrators to control visibility and access. Users can be removed from projects, allowing the project administrator to take away their visibility into that project.

  • User sessions are individually tracked and can be controlled by account administrators.

  • We perform regular internal and external audits of our software security. Mavenlink is SSAE 16 Type 2 Compliant.

  • Mavenlink is both SOC I and SOC II Compliant with no exceptions.

  • View incident reports, system status, and other operational updates: https://mavenlink.statuspage.io/