Security & data handling

The page you hand to your IT team.

Glidely is a reviewed SaaS tool that sits alongside the systems you already trust. Here is how your data is handled, so a security review is a short conversation, not a blocker.

How your data is handled

You control what comes in, and what it is used for.

You set the scope. Connect only the mailboxes and data you choose. The goal is supplier correspondence, not personal mail.
Encrypted in transit and at rest. Standard encryption across the platform.
Role-based access. Your team sees what their role allows, with an access log.
Your data is not used to train shared models. Your spend and suppliers stay yours.
Retention you control. Define how long data is kept, and remove it on request.
Non-invasive. CSV in, no mandatory write-back. Glidely never has to touch your ERP.
Human in the loop

Glidely automates what a person already does. A person still reviews it.

Nothing goes to a supplier without a human approving it. The agent drafts and organizes; your team decides and sends. This is the safety case IT looks for, built into how the product works.

Compliance posture

Where we are, stated plainly.

SOC 2 control practices. Our security program is built on SOC 2 controls and monitored continuously through Vanta. A SOC 2 Type II audit is currently underway.
Sub-processors listed. The third parties we rely on are documented and kept current.
DPA available. A data-processing agreement is available for review during onboarding.
Sits next to your reviewed SaaS. Treat Glidely the way you treat your CRM or low-code platform — reviewed software, not an experiment.

Send this to your security team.

We'll join the review, answer the questionnaire, and share the documentation your IT department needs to sign off.

Talk to our team