Compliance

Anava supports enterprise compliance requirements through security controls, auditability, and documented operational processes.

Supported Frameworks

SOC 2 Type II (Security, Availability, Confidentiality)
GDPR data protection requirements
Enterprise procurement security questionnaires and reviews

Control Areas (High Level)

Access control: Role-based access, MFA, and least-privilege enforcement
Data protection: Encryption in transit and at rest
Monitoring: Centralized logging and security alerting
Operational resilience: Backup and recovery procedures

Audit Readiness

Anava maintains documentation and evidence to support third-party audits, including system descriptions, control mappings, and operational runbooks.

For detailed control mappings, evidence checklists, and internal procedures, refer to the internal compliance documentation.

Internal Compliance Details

Detailed SOC 2 mappings, control evidence, and implementation specifics are available in the internal security documentation for authorized team members and NDA customers.

Internal Compliance Docs

If you need formal reports or a security review package, contact security@anava.ai.

Supported Frameworks​

Control Areas (High Level)​

Audit Readiness​

Supported Frameworks

Control Areas (High Level)

Audit Readiness